cfn_nag
Security scanner
A tool to automatically scan and enforce security best practices in CloudFormation templates.
Linting tool for CloudFormation templates
1k stars
33 watching
211 forks
Language: Ruby
last commit: 7 months ago
Linked from 2 awesome lists
amazonawscfncfn-nagcloudformationcloudformation-securitycloudformation-templatescompliancecontinuous-testingdevopshacktoberfestiam-ruleslintlintingopen-sourcesecuritysecurity-automationstatic-analysisstelligentunit-testing
donnemartin/awesome-aws
jakobthedev/awesome-devsecopsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 securityftw/cs-suite | An automated tool suite to assess and improve cloud security across multiple platforms | 1,145 |
 nccgroup/sobelow | A tool for detecting security vulnerabilities in Elixir and Phoenix applications | 1,692 |
 coinbase/salus | A tool for coordinating security scanning of software projects | 25 |
 deepfence/threatmapper | An application protection platform that monitors and analyzes cloud-native applications for vulnerabilities and threats. | 4,861 |
 tcosolutions/betterscan | A toolchain that scans source code and infrastructure IaC for security risks and provides a unified report. | 831 |
 neuralegion/sslscan.cr | Tools for detecting and scanning for security vulnerabilities in SSL/TLS protocols | 10 |
 rogerwelin/cfnctl | A tool that allows users to manage infrastructure using CloudFormation templates in a Terraform-like CLI workflow | 131 |
 tacixat/cfgscandroid | Tools for analyzing control flow graphs of Android code to detect malicious activity | 59 |
 tenable/terrascan | Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. | 4,779 |
 chrisandoryan/nethive-project | An SIEM system that uses machine learning and CVSS measurements to detect security threats. | 3 |
 openscanner/xguardian | A security scanner for OSX applications that detects potential vulnerabilities in URL scheme hijack, bundle ID hijack, and keychain hijack. | 41 |
 cycodelabs/cimon-action | A runtime security solution that monitors and mitigates attacks in software supply chains | 91 |
 security-code-scan/security-code-scan | Detects vulnerabilities in C# and VB.NET code | 942 |
 joenye/coc-cfn-lint | Lints CloudFormation templates for syntax and style errors using cfn-python-lint | 12 |
 adminisme/serverscan | A high-performance network scanning and service discovery tool with support for multiple platforms and tools | 1,567 |