Kubescape
An open-source Kubernetes security platform.
A tool for risk analysis, security, compliance, and misconfiguration scanning in Kubernetes.
For more tool information ➜
Open Policy Agent (OPA)
Policy-based control for cloud native environments.
An open-source, general-purpose policy engine.
For more tool information ➜
GitGuardian
The code security platform for the DevOps generation.
A platform for automated secrets detection and remediation.
For more tool information ➜
tfsec
Security scanner for your Terraform code.
An open-source static analysis tool for Terraform.
For more tool information ➜
Trivy
A comprehensive and versatile security scanner.
An open-source scanner for vulnerabilities, misconfigurations, secrets, and SBOM.
For more tool information ➜
Checkov
Policy-as-code for everyone. Scan cloud infrastructure configurations to find misconfigurations before they're deployed.
An open-source static analysis tool for Infrastructure-as-Code.
For more tool information ➜
Prisma Cloud
The Code-to-Cloud™ platform that secures apps from design to runtime.
A comprehensive Cloud Native Application Protection Platform (CNAPP).
For more tool information ➜
Terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
An open-source static code analysis tool for IaC.
For more tool information ➜
KICS
Keeping Infrastructure as Code Secure.
An open-source IaC static analysis tool by Checkmarx.
For more tool information ➜
TFLint
A Pluggable Terraform Linter.
A static analysis tool focused on linting Terraform code.
For more tool information ➜
Prowler
The most comprehensive, free tool for AWS security.
An open-source tool for AWS security assessment, auditing, hardening, and incident response.
For more tool information ➜