Prowler Logo

Prowler

0
Free
Visit Website

Prowler is an Open Source security tool to perform AWS, Azure, Google Cloud and Kubernetes security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness, and also remediations! It contains hundreds of controls covering CIS, NIST 800, NIST CSF, CISA, RBI, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, AWS Well-Architected Framework Security Pillar, AWS Foundational Technical Review (FTR), ENS (Spanish National Security Scheme) and your custom security frameworks. Provider Checks Services Compliance Frameworks Categories AWS 304 61 -> prowler aws --list-services 28 -> prowler aws --list-compliance 6 -> prowler aws --list-categories GCP 75 11 -> prowler gcp --list-services 1 -> prowler gcp --list-compliance 2 -> prowler

FEATURES

ALTERNATIVES

Docker's Actuary automates security best-practices checks for Docker containers.

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

Conmachi is a Golang tool for scanning container environments for security issues.

Anchore Enterprise is a platform that protects and secures software supply chains end-to-end.

Commercial

Burp extension for identifying cloud buckets and testing for vulnerabilities

A workload policy enforcement tool for Kubernetes with various supported policies and configuration options.

Managed Kubernetes Inspection Tool leveraging FOSS tools to query and validate security-related settings.

A cloud-native application protection platform that provides comprehensive security monitoring, vulnerability management, and threat detection for cloud environments and container workloads.

Commercial