fixinventory
Cloud risk analyzer
Tools to identify and remove critical risks in cloud infrastructure accounts by analyzing metadata from APIs of various cloud services
Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.
2k stars
18 watching
85 forks
Language: Python
last commit: 6 days ago
Linked from 2 awesome lists
awscnappcspmcybersecuritydigitaloceangcpinfrastructure-as-codepolicy-as-codesecuritysecurity-auditsecurity-automation
rootsongjc/awesome-cloud-native
funkmyster/awesome-cloud-cost-controlRelated projects:
| Repository | Description | Stars |
|---|---|---|
 aquasecurity/cloudsploit | A tool designed to detect security risks in cloud infrastructure accounts | 3,355 |
 prevade/cloudjack | Checks AWS accounts for subdomain hijacking vulnerabilities | 84 |
 googlecloudplatform/aactl | Utility to import and manage vulnerabilities and attestations from container images into Google Cloud's Artifact Analysis service. | 9 |
 bridgecrewio/checkov | An automated tool for identifying security and compliance vulnerabilities in cloud infrastructure and software packages. | 7,126 |
 boavizta/cloud-scanner | Analyzes AWS account usage and provides environmental impact estimates based on cloud service usage | 35 |
 salesforce/cloudsplaining | A tool that scans AWS IAM policies to identify security vulnerabilities and generates a report with recommendations for remediation | 1,998 |
 andresriancho/nimbostratus | Tools to discover vulnerabilities in Amazon cloud infrastructure | 447 |
 nccgroup/scoutsuite | Automatically assesses and reports on the security configuration of cloud environments. | 6,730 |
 bishopfox/smogcloud | Automatically identifies and monitors cloud assets exposed to the internet without authorization | 332 |
 duo-labs/cloudmapper | Analyzes AWS environments to identify security issues and network configurations. | 6,003 |
 sceptre/sceptre | Automates tasks related to building and managing cloud infrastructure using AWS CloudFormation templates | 1,486 |
 cycodelabs/raven | Analyzes potential security vulnerabilities in Continuous Integration/Continuous Deployment workflows and repositories. | 625 |
| nccgroup/aws-inventory | Automates discovery of AWS resources across multiple regions and services | 708 |
 tenable/terrascan | Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. | 4,766 |
 azure/wellarchitected-tools | Tools and resources to help assess the architecture of cloud-based applications and services | 140 |