Scout Suite
Scout Suite is an open source multi-cloud security-auditing tool, which gathers configuration data using cloud providers' APIs for manual inspection, highlighting risk areas and providing a clear view of the attack surface automatically. It is designed by security consultants/auditors to offer a security-oriented view of the cloud account it was run in, with support for various cloud providers like AWS, Azure, GCP, Alibaba Cloud, Oracle Cloud, and Kubernetes clusters.
FEATURES
SIMILAR TOOLS
A cloud security solution that provides agentless application mapping and vulnerability prioritization based on business impact across cloud environments.
Tool for analyzing cloud resources against best practices and generating reports.
Conmachi is a Golang tool for scanning container environments for security issues.
A command line tool that counts Amazon resources across regions and displays the results in a friendly format.
Docker's Actuary automates security best-practices checks for Docker containers.
A tool for building Open Container Initiative (OCI) container images with various functionalities.
Open-source tool for analyzing AWS temporary tokens to detect malicious activity.
A framework to analyze container images and gather useful information.
A command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.