prowler
https://github.com/prowler-cloud/prowler
Python
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST C
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Python not yet supported1 Subscribers
Add a CodeTriage badge to prowler
Help out
- Issues
- fix(permissions): add missing sesv2 permissions for SES checks
- (Regression) Disabled Guest users should not be included in "5.2.3.4 (L1) Ensure all member users are 'MFA capable'" check
- feat(aws): add bedrock_prompt_encrypted_with_cmk security check
- fix(m365): surface AuditLog.Read.All permission errors instead of false positives
- feat(aws): Update regions for AWS services
- fix(m365): entra_users_mfa_capable produces mass false positives when AuditLog.Read.All is missing
- deps: bump boto3+botocore 1.40.61 -> 1.42.93/1.42.96 to unblock backe…
- docs(compliance): expand developer guide for new compliance frameworks
- feat(aws): add cloudtrail_bedrock_logging_enabled security check
- chore(deps): bump python-dotenv from 1.1.1 to 1.2.2 in /mcp_server
- Docs
- Python not yet supported