2 Repos
Connectors for monitoring and analyzing cloud-native security configurations and secrets.
Distinguishing note: Focuses on cloud-specific service account integration for automated security analysis.
Explore 2 awesome GitHub repositories matching devops & infrastructure · Cloud Security Integrations. Refine with filters or upvote what's useful.
Trufflehog is a security tool designed to continuously monitor code repositories and cloud environments to detect, verify, and remediate exposed sensitive credentials and API keys. It functions as a comprehensive secret scanning engine that integrates directly into deployment pipelines and version control systems to intercept sensitive data before it is committed or pushed. By utilizing read-only operations and volatile memory processing, the system ensures that discovered credentials are never stored persistently, maintaining strict data privacy throughout the scanning lifecycle. The platfor
Enables automatic analysis of live cloud secrets using service account credentials.
Prowler is a multi-cloud security posture management platform and vulnerability scanner. It provides tools for automating security audits, evaluating cloud infrastructure against regulatory compliance frameworks, and managing security assessments through a dedicated analysis dashboard. The project distinguishes itself by providing an AI-driven security context server that feeds structured data to AI assistants for automated risk analysis. It also employs graph-based attack path mapping to visualize potential lateral movement and exploitation routes across cloud inventories. The platform cove
Interacts with multiple cloud provider endpoints to aggregate security audit data and infrastructure configuration states.