prowler
https://github.com/prowler-cloud/prowler
Python
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST C
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Python not yet supported1 Subscribers
Add a CodeTriage badge to prowler
Help out
- Issues
- Prowler CLI results importable to prowler UI
- Multi-Rule OR Logic Support in Mutelist
- Support GitHub Repository Rulesets in Prowler GitHub Checks
- False positive Route53 record is a dangling IP which can lead to a subdomain takeover attack
- Users management
- feat(gcp): new check dns_policy_logging_enabled to ensure DNS logging
- Multiaccount consolidated report dashboard generation using the Prowler CLI
- feat: Ability to configure rule based alerts to existing connector / integrations
- SAML ACS URL uses internal hostname prowler-api:8080 instead of external domain
- FinOps / Waste Detection Checks (unused & stopped resources) with cost estimation for risk scoring
- Docs
- Python not yet supported