terrascan
Security scanner
Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure.
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
5k stars
69 watching
500 forks
Language: Go
last commit: 9 days ago
Linked from 4 awesome lists
architectureawsaws-securityazure-securitycloud-securitycloudsecuritydevopsdevsecopsgcp-securityiacinfrastructureinfrastructure-as-codekubernetessastscanssecuritysecurity-toolssecurity-violationsterraformterrascan
shuaibiyy/awesome-tf
4ndersonlin/awesome-cloud-security
jakobthedev/awesome-devsecops
shospodarets/awesome-platform-engineeringRelated projects:
| Repository | Description | Stars |
|---|---|---|
 aquasecurity/tfsec | A tool for identifying potential misconfigurations in Terraform code during the software development process | 6,718 |
 tcosolutions/betterscan | A toolchain that scans source code and infrastructure IaC for security risks and provides a unified report. | 817 |
 securityftw/cs-suite | An automated tool suite to assess and improve cloud security across multiple platforms | 1,144 |
 legit-labs/legitify | Automates vulnerability detection and remediation across GitHub and GitLab assets to strengthen software security posture. | 774 |
 checkmarx/kics | A tool for detecting security vulnerabilities and compliance issues in infrastructure-as-code projects | 2,093 |
 bridgecrewio/checkov | An automated tool for identifying security and compliance vulnerabilities in cloud infrastructure and software packages. | 7,126 |
 openscanner/xguardian | A security scanner for OSX applications | 41 |
 deepfence/threatmapper | An application protection platform that monitors and analyzes cloud-native applications for vulnerabilities and threats. | 4,837 |
 hxsecurity/terraformgoat | A multi-cloud deployment tool designed to test and demonstrate the vulnerability of cloud infrastructure configurations | 536 |
 praetorian-inc/snowcat | Automated tool to detect security vulnerabilities in Istio clusters by analyzing configuration and audit best practices | 173 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |
 zupit/horusec | Identifies security flaws in software projects through static code analysis | 1,149 |
 awslabs/sustainability-scanner | An open-source tool that evaluates AWS CloudFormation templates against sustainability best practices and generates reports with suggested improvements. | 107 |
 boostsecurityio/poutine | Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. | 229 |
 jupiterone/starbase | Graph-based security analysis platform | 337 |