TerraGoat
TerraGoat is a Terraform repository designed to demonstrate common configuration errors in cloud environments.
Amazon Detective
A security service that automates the collection and analysis of log data from AWS resources to investigate security issues.
Dagda
A tool for static analysis of vulnerabilities and malware in Docker images and monitoring Docker containers for anomalous activities.
Bridgecrew
Bridgecrew automates the identification and remediation of misconfigurations in cloud infrastructure, leveraging its open-source tool Checkov for static analysis of IaC templates.
Cloudmarker
Cloud security monitoring tool and framework
Mend.io
Mend.io is a platform that integrates security into the software development lifecycle, focusing on open-source dependencies and codebases.
Horusec
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Checkmarx SAST
A static application security testing tool that identifies and mitigates security vulnerabilities early in the software development life cycle.
Cloud Security Suite
A tool for auditing the security posture of AWS, GCP, and Azure infrastructures.
Snyk Cloud
Snyk Cloud secures cloud environments by integrating security checks into the development lifecycle, automating scans and continuous monitoring of cloud configurations.
Repokid
AWS Least Privilege for Distributed, High-Velocity Deployment
Snyk Cloud Security
A platform for securing cloud-native applications and infrastructure by integrating security into the software development lifecycle.