The Wiz Cloud Security Platform enables security, dev, and devops to work together in a self-service model built for the scale and speed of cloud development. It helps build faster in the cloud, enabling security, dev, and devops to work together in a self-service model built for the scale and speed of your cloud development. Trusted by more than 40% of Fortune 100 companies, Wiz is rated #1 in cloud security by customers, who praise its ease of use, scalability, and effectiveness in detecting and preventing cloud security threats. With Wiz, you can: * Detect and prevent cloud security threats in real-time * Automate security configurations and compliance * Gain visibility into cloud security posture and risk * Integrate with your existing security tools and workflows Try Wiz today and experience the power of cloud-native security.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
TerraGoat is a deliberately vulnerable Terraform repository that demonstrates common cloud infrastructure misconfigurations for training and testing security tools.
A framework for analyzing container images, running scripts inside containers, and gathering information for static analysis and policy enforcement.
A deprecated Kubernetes workload policy enforcement tool that helped secure multi-tenant clusters through various security policies and configurations.
A Docker security vulnerability where disabling inter-container communication (ICC) fails to block raw ethernet frames, allowing unexpected data transfer between containers via raw sockets.
AWS Vault securely stores AWS IAM credentials in the operating system's keystore and generates temporary credentials for development environments.
HAWK is a multi-cloud antivirus scanning API that uses CLAMAV and YARA engines to detect malware in AWS S3, Azure Blob Storage, and GCP Cloud Storage objects.
CloudSploit by Aqua is an open-source multi-cloud security scanning tool that detects security risks and compliance issues across AWS, Azure, GCP, OCI, and GitHub platforms.
A setuid implementation of user namespaces that enables running unprivileged containers without root privileges as a secure alternative to traditional container runtimes.
KICS is an open-source Infrastructure as Code security scanner that detects vulnerabilities and misconfigurations through customizable queries and integrates with CI/CD pipelines.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.