Plerion Logo

Plerion

0
Commercial
Visit Website

Plerion is a cloud security platform that combines multiple security capabilities into a unified solution for cloud infrastructure protection. The platform provides several key functionalities: Asset Inventory Management: - Tracks and maintains inventory of cloud resources - Enables querying and visualization of cloud assets - Supports multiple cloud providers including AWS, Azure, GCP, and Kubernetes Security Assessment: - Performs configuration auditing for cloud resources - Identifies misconfigurations and security vulnerabilities - Conducts infrastructure as code (IaC) scanning - Analyzes cloud workload vulnerabilities Access Control and Permissions: - Implements Cloud Infrastructure Entitlement Management (CIEM) - Monitors identity and access permissions - Maps potential attack paths through identity relationships Compliance and Risk Management: - Monitors compliance with security standards - Generates compliance reports - Provides risk scoring and prioritization - Creates Software Bill of Materials (SBOM) Integration Capabilities: - Connects with common development and operations tools - Supports integration with Slack, Jira, PagerDuty, and other platforms - Offers API access for custom integrations The platform operates through cloud-native deployment without requiring agent installation and focuses on identifying critical security risks while filtering out less significant issues.

FEATURES

ALTERNATIVES

A small project for continuous auditing of internet-facing AWS services

CloudFox helps gain situational awareness in unfamiliar cloud environments for penetration testers and offensive security professionals.

Implements a cloud version of the Shadow Copy attack against domain controllers in AWS, allowing theft of domain user hashes.

A command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies

A Python script to test the security of AWS S3 buckets

A graph-based tool for visualizing effective access and resource relationships within AWS

A tool to identify publicly accessible S3 objects

A security toolkit for Amazon S3