fixinventory
Cloud risk analyzer
Tools to identify and remove critical risks in cloud infrastructure accounts by analyzing metadata from APIs of various cloud services
Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.
2k stars
18 watching
86 forks
Language: Python
last commit: about 21 hours ago
Linked from 2 awesome lists
awscnappcspmcybersecuritydigitaloceangcpinfrastructure-as-codepolicy-as-codesecuritysecurity-auditsecurity-automation
rootsongjc/awesome-cloud-native
funkmyster/awesome-cloud-cost-controlRelated projects:
| Repository | Description | Stars |
|---|---|---|
 aquasecurity/cloudsploit | A tool designed to detect security risks in cloud infrastructure accounts | 3,365 |
 prevade/cloudjack | Checks AWS accounts for subdomain hijacking vulnerabilities | 84 |
 googlecloudplatform/aactl | Utility to import and manage vulnerabilities and attestations from container images into Google Cloud's Artifact Analysis service. | 10 |
 bridgecrewio/checkov | An automated tool for identifying security and compliance vulnerabilities in cloud infrastructure and software packages. | 7,169 |
 boavizta/cloud-scanner | Automates the estimation of environmental impacts from AWS EC2 instances and block storage. | 35 |
 salesforce/cloudsplaining | A tool that scans AWS IAM policies to identify security vulnerabilities and generates a report with recommendations for remediation | 2,004 |
 andresriancho/nimbostratus | Tools to discover vulnerabilities in Amazon cloud infrastructure | 448 |
 nccgroup/scoutsuite | A tool for security auditing of multi-cloud environments | 6,770 |
 bishopfox/smogcloud | Automatically identifies and monitors cloud assets exposed to the internet without authorization | 332 |
 duo-labs/cloudmapper | Analyzes AWS environments to identify security issues and network configurations. | 6,006 |
 sceptre/sceptre | Automates tasks related to building and managing cloud infrastructure using AWS CloudFormation templates | 1,485 |
 cycodelabs/raven | Analyzes potential security vulnerabilities in Continuous Integration/Continuous Deployment workflows and repositories. | 630 |
| nccgroup/aws-inventory | Automates discovery of AWS resources across multiple regions and services | 708 |
 tenable/terrascan | Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. | 4,774 |
 azure/wellarchitected-tools | Tools and resources to help assess the architecture of cloud-based applications and services | 140 |