Tracebit
Tracebit is a security canary deployment and management platform that helps organizations detect potential intrusions across cloud infrastructure, identity systems, and endpoints. The platform operates by: - Analyzing cloud environments through read-only connections to profile existing resources - Generating and recommending contextually appropriate security canaries based on environment analysis - Deploying canaries through infrastructure-as-code modules - Continuously evolving canary configurations to maintain effectiveness Key capabilities include: - Cloud resource monitoring across AWS and Azure environments - Integration with common security tools and SIEM platforms - Automated canary deployment and maintenance - Support for multiple resource types including S3 buckets, DynamoDB tables, Secrets Manager, SSM Parameters, IAM roles, and GitHub Actions - Infrastructure-as-code deployment using Terraform - Alert generation with contextual information for incident response The system focuses on implementing an "assume breach" approach by distributing deceptive resources that can identify unauthorized access attempts and lateral movement within cloud environments.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A serverless application that creates and monitors fake HTTP endpoints as honeytokens to detect attackers, malicious insiders, and automated threats.
A WordPress plugin that logs failed login attempts to help monitor unauthorized access attempts on WordPress websites.
A low-interaction SSH authentication logging honeypot that logs all authentication attempts in JSON format.
A web-based visualization tool that displays statistics and generates charts from Shockpot honeypot data stored in PostgreSQL databases.
A low interaction client honeypot that detects malicious websites using signature, anomaly and pattern matching techniques with automated URL collection and JavaScript analysis capabilities.
A Docker-based honeypot network implementation featuring cowrie and dionaea honeypots with centralized event collection, geolocation enrichment, and real-time attack visualization.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.