1069 Open source projects that are alternatives of or similar to prowler

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

A terraform module to create a VPC with secure default configurations.

Simple command line tool to check for compliance against CIS Benchmarks

Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

Wazuh - Kibana plugin

☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!

Provides various Windows Server Active Directory (AD) security-focused reports.

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Wazuh - Docker containers

Security scanner for your Terraform code

CB-Spider provides a unified view and single interface for multi-cloud management.

GKE CIS 1.1.0 Benchmark InSpec Profile

Ultimate DevSecOps library

Knowledge seeks no man

The Go Cloud Development Kit (Go CDK): A library and tools for open cloud development in Go.

A GitHub Action for authenticating to Google Cloud.

A schema and set of tools for using SQL to query cloud infrastructure.

Google Cloud Platform Security Tool

👤 Identity and Access Management Knowledge for Cloud Platforms

Hayat is a script for report and analyze Google Cloud Platform resources.

Exports primitive and predefined GCP IAM Roles and their permissions

Open Source SIEM (Security Information and Event Management system).

Identify hardcoded secrets and dangerous behaviours

Wazuh - The Open Source Security Platform

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

immudb - world’s fastest immutable database, built on a zero trust model

A cloud-native open-source unified multi-cloud and hybrid-cloud platform. 开源、云原生的多云管理及混合云融合平台

tfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

A crowdsourced directory tracking the compliance and security practices of cloud services and their subprocessors

cloudquery transforms your cloud infrastructure into SQL or Graph database for easy monitoring, governance and security.

Securely access AWS services from GKE cluster

GCP CIS 1.1.0 Benchmark InSpec Profile

Creating time bound IAM Conditions with ease and flair

Kubernetes Common Configuration Scoring System

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Secure storage for personal records built to comply with GDPR

A curated list of security resources for a Ruby on Rails application

Helps you continuously monitor and fix common security vulnerabilities in your Django application.

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

This is the official main repository for the Assimilation project

kube-scan: Octarine k8s cluster risk assessment tool

Security Knowledge Framework (SKF) Python Flask / Angular project

LIFARS Networking Security GNU/Linux distro

Cloud Security Posture Management (CSPM)

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Scripts to gather system configuration information for offline/remote auditing

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

All-in-one tool for managing vulnerability reports from AppSec pipelines

Open Cloud Security Posture Management Engine

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Wazuh - Project documentation