Token Security is a cloud-based identity security platform that focuses on managing non-human identities (NHI) in cloud environments. The platform operates through three main functions: 1. Discovery and inventory of all machine identities, credentials, and entitlements across cloud infrastructure 2. Continuous monitoring and risk assessment of identity exposure, including detection of stale, local, unfederated, or shadow identities 3. Lifecycle management of machine identities, including credential rotation, access reviews, and deactivation of unused accounts The solution is agentless and performs automated scanning and log analysis to maintain visibility of machine identities across cloud resources, including kubernetes clusters, databases, servers, and containers.
FEATURES
SIMILAR TOOLS
Encrypt Kubernetes Secrets into SealedSecrets for safe storage and controlled decryption within the cluster.
An attacker can create a new IAM policy version and set it as the default version without requiring the iam:SetDefaultPolicyVersion permission.
Repository documenting common techniques to bypass AppLocker with verified, unverified, and generic bypasses.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.