prowler
https://github.com/prowler-cloud/prowler
Python
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST C
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Python not yet supported1 Subscribers
Add a CodeTriage badge to prowler
Help out
- Issues
- [New Check]: At least one Conditional Access policy must explicitly target Azure DevOps
- [New Check]: Microsoft Entra directory sync must block object takeover (soft- and hard-matching)
- [New Check]: Mailbox primary SMTP address must use a verified custom domain (not .onmicrosoft.com)
- [New Check]: Service principals with privileged Entra directory roles must not have owners
- feat(gcp): add cloudfunction_function_inside_vpc check
- feat(gcp): add cloudfunction_function_not_publicly_accessible check
- feat(gcp): add cloudsql_instance_cmek_encryption_enabled check
- feat(gcp): add cloudsql_instance_high_availability_enabled check
- feat(gcp): add secretmanager_secret_not_publicly_accessible check
- feat(gcp): add secretmanager_secret_rotation_enabled check
- Docs
- Python not yet supported