This command line tool counts the number of resources in different categories across Amazon regions. It first shows the dictionary of the results for the monitored services on a per-region basis, then it shows totals across all regions in a friendlier format. It tries to use the most-efficient query mechanism for each resource in order to manage the impact of API activity. The development plan is to upgrade the output (probably to CSV file) and to continue to add services. If you have a specific service you want to see added just add a request in the comments. The current list includes: Application and Network Load Balancers Autoscale Groups Classic Load Balancers CloudTrail Trails Cloudwatch Rules Config Rules Dynamo Tables Elastic IP Addresses Glacier Vaults IAM Groups Images Instances KMS Keys Lambda Functions Launch Configurations NAT Gateways Network ACLs IAM Policies RDS Instances IAM Roles S3 Buckets SAML Providers SNS Topics Security Groups Snapshots.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Discover and understand the Docker Layer 2 ICC Bug and its implications on inter-container communication.
Tool for assessing compliance and running vulnerability scans on Docker images.
An AWS Lambda auditing tool that provides asset visibility and actionable results through statistical analysis and security checks.
Multi-cloud OSINT tool for enumerating public resources in AWS, Azure, and Google Cloud.
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
Learn how to secure applications in Kubernetes Engine by granting varying levels of privilege based on requirements.
Kube-bench is a tool for checking Kubernetes security based on CIS Kubernetes Benchmark.
In-depth analysis and insights on various cloud security topics by Rhino Security Labs team
Collection of Kubernetes manifests creating pods with elevated privileges for security testing.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.