# Terraform Drift Detection Tools > Search results for `detect drift between Terraform state and live infrastructure` on awesome-repositories.com. 115 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/detect-drift-between-terraform-state-and-live-infrastructure **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/detect-drift-between-terraform-state-and-live-infrastructure).** ## Results - [hashicorp/terraform](https://awesome-repositories.com/repository/hashicorp-terraform.md) (48,720 ⭐) — Terraform is a declarative infrastructure-as-code tool designed to manage the lifecycle of cloud and on-premises resources. It functions as a workflow engine that reconciles a defined desired state against real-world infrastructure, using a persistent state-tracking layer to maintain consistency and visibility across distributed environments. By mapping infrastructure components into a directed acyclic graph, the system calculates the optimal order for provisioning, updating, or destroying resources. The platform is distinguished by its extensible plugin-based architecture, which decouples co - [googlecloudplatform/terraformer](https://awesome-repositories.com/repository/googlecloudplatform-terraformer.md) (14,551 ⭐) — Terraformer is a reverse engineering tool and infrastructure-to-code generator that transforms existing live cloud resources into declarative configuration files and state manifests. It functions as a cloud infrastructure exporter, allowing users to extract resource metadata from cloud providers to create reproducible infrastructure deployments. The tool specializes in reverse engineering by querying cloud provider APIs to map active resource configurations and translate them into Terraform resource blocks. It supports infrastructure state recovery by reconstructing state files from live envi - [hashicorp/terraform-provider-aws](https://awesome-repositories.com/repository/hashicorp-terraform-provider-aws.md) (10,951 ⭐) — This project is an infrastructure as code tool designed to automate the lifecycle management of Amazon Web Services resources. It functions as a cloud resource provisioner that enables users to define, version, and deploy infrastructure components through declarative configuration files. The system operates by reconciling the current state of a cloud environment against a desired configuration, calculating the necessary delta operations to achieve convergence. It utilizes a directed acyclic graph to resolve resource dependencies and determine the optimal execution order for changes, ensuring - [antonbabenko/awesome-terraform-compliance](https://awesome-repositories.com/repository/antonbabenko-awesome-terraform-compliance.md) (134 ⭐) — Awesome Terraform Compliance - tools, frameworks, and resources for implementing compliance, security, and governance controls in Terraform and OpenTofu infrastructure. - [hashicorp/vault](https://awesome-repositories.com/repository/hashicorp-vault.md) (35,796 ⭐) — Vault is a centralized secrets management platform designed to secure, store, and control access to sensitive credentials such as API keys, passwords, certificates, and encryption keys. At its core, the system employs a barrier-based cryptographic sealing mechanism that requires an unseal process to decrypt internal storage, ensuring that sensitive data remains protected. It provides identity-based access control to manage granular permissions across distributed infrastructure, effectively centralizing security policies and authentication for both human and machine workloads. What distinguish - [adamibs/vscode-terraform-live-graph](https://awesome-repositories.com/repository/adamibs-vscode-terraform-live-graph.md) (239 ⭐) — The Terraform Live Graph Extension for Visual Studio Code is a plugin that allows you to generate a live Terraform graph as you code. - [opentofu/opentofu](https://awesome-repositories.com/repository/opentofu-opentofu.md) (29,206 ⭐) — OpenTofu is a declarative infrastructure orchestrator that automates the provisioning and management of cloud resources. It functions as a platform-agnostic interface, allowing users to define their desired environment state in configuration files, which the system then reconciles against live infrastructure to calculate and execute necessary updates. The project utilizes a graph-based execution engine to determine the optimal sequence for resource operations, enabling the parallel processing of independent components to reduce deployment times. To support complex, multi-platform environments - [phlx0/drift](https://awesome-repositories.com/repository/phlx0-drift.md) (661 ⭐) — Terminal screensaver that activates when you're idle — constellations, rain, particles & more. Press any key to resume. Just drift away! - [dancingbanana/genetic-drift](https://awesome-repositories.com/repository/dancingbanana-genetic-drift.md) (14 ⭐) — Genetic Drift - Github Game-off 2012 submission - [crossplane/crossplane](https://awesome-repositories.com/repository/crossplane-crossplane.md) (11,791 ⭐) — Crossplane is a Kubernetes-based control plane framework that functions as a cloud resource orchestrator and infrastructure-as-code platform. It enables the management of heterogeneous infrastructure by extending the Kubernetes API to provision and maintain external cloud services through declarative configuration. By utilizing custom resource controllers, it continuously reconciles the state of external infrastructure with defined desired states, ensuring consistent deployment and lifecycle management across multiple cloud providers. The platform distinguishes itself through its composition- - [kubeflow/kfserving](https://awesome-repositories.com/repository/kubeflow-kfserving.md) (5,576 ⭐) — KServe is an open platform for deploying and serving generative and predictive AI models on Kubernetes. It defines inference services as custom resources with declarative YAML specifications, enabling a Kubernetes-native approach to model deployment and lifecycle management. The platform leverages Knative-based serverless scaling for automatic scale-to-zero and revision management, and supports a pluggable serving runtime architecture that maps model formats to containerized execution environments. KServe distinguishes itself through model-aware autoscaling that scales replicas based on token - [seldonio/alibi-detect](https://awesome-repositories.com/repository/seldonio-alibi-detect.md) (2,523 ⭐) — Algorithms for outlier, adversarial and drift detection - [argoproj/argo-cd](https://awesome-repositories.com/repository/argoproj-argo-cd.md) (22,087 ⭐) — Argo CD is a declarative, GitOps-based continuous delivery tool designed for Kubernetes. It functions as a centralized control plane that synchronizes application states from version-controlled repositories directly into target clusters, ensuring that the live environment consistently matches the desired configuration defined in Git. The platform distinguishes itself through its ability to manage multi-cluster deployments from a single interface, providing unified oversight across distinct computing environments. It employs a controller-based reconciliation loop to continuously monitor for co - [kserve/kserve](https://awesome-repositories.com/repository/kserve-kserve.md) (5,576 ⭐) — KServe is a Kubernetes-native platform for deploying and serving machine learning models as scalable inference services. It supports both generative AI models, including large language models, and traditional predictive models from frameworks such as TensorFlow, PyTorch, Scikit-Learn, XGBoost, and ONNX. The platform manages the full lifecycle of model deployments, including revision tracking, canary rollouts, A/B testing, and automatic rollbacks, and provides serverless scale-to-zero capabilities for cost-efficient resource management. KServe distinguishes itself through a standardized infere - [facebook/react](https://awesome-repositories.com/repository/facebook-react.md) (245,669 ⭐) — React is a JavaScript library for building user interfaces based on a component-driven architecture and unidirectional data flow. - [simolus3/drift](https://awesome-repositories.com/repository/simolus3-drift.md) (3,231 ⭐) — Drift is a type-safe SQL persistence library and relational mapper that provides a structured way to map database tables to classes and execute SQL queries with build-time validation. It functions as a type-safe query builder and a wrapper for SQLite and PostgreSQL, eliminating manual result set parsing by binding query outputs to native objects. The project distinguishes itself through a build-time code generation system that produces type-safe APIs and validates raw SQL statements against database versions before execution. It features reactive query streaming, which transforms SQL queries - [runatlantis/atlantis](https://awesome-repositories.com/repository/runatlantis-atlantis.md) (9,146 ⭐) — Atlantis is a GitOps deployment tool and infrastructure as code orchestrator that synchronizes cloud resources with a git repository using pull request comments. It serves as a policy-based infrastructure gate and automation system for Terraform, executing plans and applies directly from version control to coordinate deployments across multiple projects and environments. The system differentiates itself through a lock-based concurrency model that prevents simultaneous modifications to the same project or workspace. It features server-side policy validation to intercept plan outputs for compli - [nis2shield/infrastructure](https://awesome-repositories.com/repository/nis2shield-infrastructure.md) (2 ⭐) — 🐳 Secure Docker infrastructure for NIS2 compliance - Hardened containers, log segregation, automated backups - [kamranahmedse/developer-roadmap](https://awesome-repositories.com/repository/kamranahmedse-developer-roadmap.md) (357,434 ⭐) — Developer Roadmap is a community-driven platform that provides structured, graph-based learning paths for software engineering. It serves as a comprehensive knowledge repository where technical domains are organized into visual sequences to guide professional skill acquisition and career growth. The project distinguishes itself through a collaborative ecosystem that enables users to contribute roadmaps, curate industry best practices, and maintain professional profiles. It integrates diagnostic assessment frameworks to evaluate technical proficiency, helping developers identify knowledge gaps - [puppetlabs/puppet](https://awesome-repositories.com/repository/puppetlabs-puppet.md) (7,886 ⭐) — Puppet is an infrastructure as code tool and configuration management framework used to automate the provisioning and state orchestration of server fleets. It functions as a declarative state orchestrator that manages server configurations and system settings to ensure consistency and reproducibility across a fleet of machines. The system utilizes a declarative state modeling approach and an idempotent execution engine to maintain configuration state and prevent environment drift. It employs resource-based abstraction and a client-server architecture to translate high-level specifications int - [pulumi/pulumi](https://awesome-repositories.com/repository/pulumi-pulumi.md) (24,797 ⭐) — Pulumi is an infrastructure-as-code framework that enables the definition, deployment, and management of cloud resources using general-purpose programming languages. It functions as a cloud resource orchestrator that coordinates the lifecycle of heterogeneous infrastructure by executing code to construct dependency graphs and reconciling the desired state against actual cloud environments. The platform distinguishes itself through a language-host runtime bridge that allows developers to use standard programming languages to define infrastructure, rather than relying solely on domain-specific - [flutter-team-archive/plugins](https://awesome-repositories.com/repository/flutter-team-archive-plugins.md) (17,710 ⭐) — This project is a collection of official plugin packages and a native integration library designed to provide a consistent interface for accessing hardware and software functionality across different mobile and desktop platforms. It serves as a native platform bridge, enabling cross-platform applications to invoke native code and manage operating system dependencies. The project utilizes a federated plugin architecture, splitting plugins into common interfaces and separate platform implementations to allow for independent development and extension. It further supports native integration throu - [chenrui333/terraformer](https://awesome-repositories.com/repository/chenrui333-terraformer.md) (8 ⭐) — CLI tool to generate terraform files from existing infrastructure (reverse Terraform). - [hashicorp/nomad](https://awesome-repositories.com/repository/hashicorp-nomad.md) (16,211 ⭐) — Nomad is a distributed workload orchestrator and infrastructure automation platform designed to manage the lifecycle of applications across large-scale, heterogeneous environments. It functions as a multi-cloud orchestration engine, providing a unified control plane to deploy, scale, and govern containers, virtual machines, and legacy applications. By utilizing declarative job specifications, the system ensures infrastructure convergence and maintains the desired state across distributed data centers and geographic regions. The platform distinguishes itself through a flexible, plugin-based ar - [benyamindsmith/ig.degree.betweenness](https://awesome-repositories.com/repository/benyamindsmith-ig-degree-betweenness.md) (40 ⭐) — Implementation of the "Node Degree+Edge" Betweenness Community Detection Algorithm for 'igraph' Objects with R - [denysdovhan/spaceship-prompt](https://awesome-repositories.com/repository/denysdovhan-spaceship-prompt.md) (20,515 ⭐) — Spaceship Prompt is a customizable Zsh prompt theme that serves as a development environment monitor, shell environment indicator, and system status monitor. It renders a visual interface for the terminal to display active programming language runtimes, package manager versions, and hardware battery levels. The project functions as a Git status indicator and infrastructure context display, tracking the state of version control repositories and showing active container versions and cluster contexts for cloud and local environments. The tool provides capabilities for shell context visualizatio - [khuedoan/homelab](https://awesome-repositories.com/repository/khuedoan-homelab.md) (9,109 ⭐) — This project is a GitOps infrastructure framework designed for managing bare metal servers, container clusters, and networking. It serves as a declarative system for orchestrating the deployment and lifecycle of self-hosted services, using Git as the source of truth to synchronize the desired state of the environment. The framework differentiates itself through a comprehensive automation suite that covers the entire hardware-to-service pipeline. It includes a PXE-based bare metal provisioner for network booting and operating system installation, alongside a lightweight container orchestration - [denoland/fresh](https://awesome-repositories.com/repository/denoland-fresh.md) (13,776 ⭐) — Fresh is a full-stack, type-safe web framework built for TypeScript that prioritizes server-side rendering and edge-ready deployment. It generates full HTML content on the server for every request, ensuring immediate page visibility and search engine accessibility while utilizing streaming response generation to reduce latency. The framework distinguishes itself through an islands-based architecture that performs partial hydration, sending minimal JavaScript to the client by only activating interactive components. It manages state across these components using a reactive signals system, which - [terraformer-js/terraformer](https://awesome-repositories.com/repository/terraformer-js-terraformer.md) (238 ⭐) — [npm-image]: https://img.shields.io/npm/v/@terraformer/arcgis.svg?style=flat-square [npm-url]: https://www.npmjs.com/package/@terraformer/arcgis [travis-image]: https://app.travis-ci.com/terraformer-js/terraformer.svg?branch=main [travis-url]: https://app.travis-ci.com/terraformer-js/terraformer… - [segment-boneyard/nightmare](https://awesome-repositories.com/repository/segment-boneyard-nightmare.md) (20,003 ⭐) — Nightmare is a multi-purpose automation workflow orchestrator designed to streamline development and operational tasks through a unified command-line interface. It functions as a comprehensive toolkit for managing browser automation, cloud infrastructure, serverless function lifecycles, and distributed messaging streams. The project distinguishes itself by consolidating disparate development utilities into a single environment. It provides specialized frameworks for programmatic web browser control, the transformation of vector graphic assets into accessible user interface components, and the - [ml-cube/ml3-drift](https://awesome-repositories.com/repository/ml-cube-ml3-drift.md) (46 ⭐) — Easy-to-embed Drift Detectors - [prometheus-operator/prometheus-operator](https://awesome-repositories.com/repository/prometheus-operator-prometheus-operator.md) (9,941 ⭐) — The Prometheus Operator is a Kubernetes monitoring orchestrator and controller that manages Prometheus clusters and observability components through declarative custom resources. It functions as a custom resource controller that translates high-level Kubernetes resource definitions into the configuration files required by the underlying monitoring software. The project automates the deployment, scaling, and lifecycle of an observability stack, including the integration of components like Thanos and Alertmanager. It distinguishes itself by syncing monitoring targets, alerting rules, and scrape - [kestra-io/kestra](https://awesome-repositories.com/repository/kestra-io-kestra.md) (27,073 ⭐) — Kestra is a declarative workflow orchestrator designed to manage complex task dependencies and automated processes through versioned configuration files. It functions as a distributed platform that decouples task scheduling from execution by offloading computational workloads to a fleet of worker nodes. The system uses a reactive, event-driven engine to initiate workflows automatically in response to external signals, webhooks, schedules, or file system changes. The platform distinguishes itself through a modular plugin architecture that allows for the integration of custom tasks and external - [projectdiscovery/subfinder](https://awesome-repositories.com/repository/projectdiscovery-subfinder.md) (13,105 ⭐) — Subfinder is a security reconnaissance framework designed for subdomain enumeration and attack surface management. It functions as a discovery engine that identifies and maps internet-exposed infrastructure, cloud-hosted assets, and network ranges to maintain a comprehensive inventory of an organization's digital footprint. The project distinguishes itself through a modular, template-driven scanning engine that executes security checks against discovered assets. It leverages cloud-native asset discovery to query provider APIs and infrastructure metadata, while supporting distributed agent orc - [state-adapt/state-adapt](https://awesome-repositories.com/repository/state-adapt-state-adapt.md) (307 ⭐) — Declarative, incremental state management library - [bregman-arie/devops-exercises](https://awesome-repositories.com/repository/bregman-arie-devops-exercises.md) (82,879 ⭐) — This project is a comprehensive educational curriculum designed to build proficiency across modern infrastructure, cloud-native technologies, and systems administration. It functions as a reference library and interview preparation resource, offering a structured collection of conceptual questions, practical coding challenges, and hands-on scenarios that cover the full spectrum of software delivery and operational workflows. The repository distinguishes itself through a modular, domain-specific structure that links instructional problem statements with verified implementation examples. By emp - [kubernetes/kops](https://awesome-repositories.com/repository/kubernetes-kops.md) (16,631 ⭐) — kops is a Kubernetes cluster provisioner and lifecycle manager designed to automate the creation, maintenance, and destruction of production-grade clusters on cloud infrastructure. It functions as a declarative infrastructure manager, synchronizing the live state of a cluster with versioned manifests stored in remote object storage to ensure idempotent operations. The project distinguishes itself by offering comprehensive automation for the entire cluster lifecycle, including high-availability control plane deployment, incremental rolling updates, and automated version upgrades. It also serve - [voltagent/awesome-claude-code-subagents](https://awesome-repositories.com/repository/voltagent-awesome-claude-code-subagents.md) (21,906 ⭐) — This project provides a framework for managing multi-agent systems, designed to automate complex software development, infrastructure, and business workflows. It functions as a multi-agent workflow orchestrator that routes tasks to domain-specific workers while maintaining state persistence and infrastructure automation. By leveraging large language models, the system decomposes high-level objectives into actionable plans, ensuring that complex operations are executed with consistency and reliability. The framework distinguishes itself through its hierarchical agent registry and policy-driven - [f4rkh4d/drift](https://awesome-repositories.com/repository/f4rkh4d-drift.md) (1 ⭐) — sql linter and formatter in rust. 10 dialects. single binary. - [hashicorp/terraform-cdk](https://awesome-repositories.com/repository/hashicorp-terraform-cdk.md) (5,077 ⭐) — Define infrastructure resources using programming constructs and provision them using HashiCorp Terraform - [appwrite/appwrite](https://awesome-repositories.com/repository/appwrite-appwrite.md) (56,318 ⭐) — Appwrite is a backend-as-a-service platform that provides a unified development environment for building full-stack applications. It integrates essential infrastructure components—including authentication, databases, storage, and serverless functions—into a single, centralized interface to simplify application development and resource management. The platform distinguishes itself through a container-based microservices architecture that ensures consistent execution across diverse infrastructure. It features a versatile connectivity layer that links frontend applications with third-party servi - [spinnaker/spinnaker](https://awesome-repositories.com/repository/spinnaker-spinnaker.md) (9,740 ⭐) — Spinnaker is a multi-cloud continuous delivery platform designed to automate software releases and deployment pipelines across various public cloud providers and Kubernetes clusters. It functions as a cloud deployment orchestrator and infrastructure delivery tool, coordinating the promotion of software artifacts through multiple environments using visual workflows and directed acyclic graphs. The platform distinguishes itself with a dedicated canary analysis engine that compares performance metrics between new and stable software versions to automate release decisions. It utilizes cloud-agnos - [thesnaky/lives](https://awesome-repositories.com/repository/thesnaky-lives.md) (522 ⭐) — Lives - Reactive LiveData Extensions for Kotlin and Java - [davila7/claude-code-templates](https://awesome-repositories.com/repository/davila7-claude-code-templates.md) (20,933 ⭐) — Claude Code Templates is a comprehensive framework for orchestrating specialized AI agents and automating development workflows within local environments. It provides a structured system for defining, configuring, and deploying AI personas that handle specific technical tasks, ranging from backend architecture and frontend implementation to security auditing and infrastructure management. The project distinguishes itself through a configuration-driven approach that allows teams to standardize development environments and share reusable agent definitions across projects. It includes a robust C - [istio/istio](https://awesome-repositories.com/repository/istio-istio.md) (38,226 ⭐) — Istio is a service mesh infrastructure that provides a centralized control plane to manage, secure, and observe communication between distributed microservices. It functions as a policy-driven network traffic controller, enabling developers to route, balance, and secure service-to-service traffic without requiring modifications to application code. The system enforces zero-trust security by utilizing mutual transport layer authentication to verify cryptographic identities for every network request. The project distinguishes itself through a sidecar-less proxy architecture, which offloads netw - [elastic/detection-rules](https://awesome-repositories.com/repository/elastic-detection-rules.md) (2,508 ⭐) — This project is a detection-as-code framework providing a library of security monitoring rules and predefined detection content for Elasticsearch data indices. It serves as a threat detection rule library designed to identify malicious activity and attack patterns across diverse data streams in cloud and on-premises environments. The framework implements a detection engineering workflow where rules are defined in YAML and managed as versioned code. It includes a set of command-line utilities for automated rule deployment, metadata searching, and template generation, supported by a Python-base - [terraform-docs/terraform-docs](https://awesome-repositories.com/repository/terraform-docs-terraform-docs.md) (4,791 ⭐) — terraform-docs is a Terraform module documentation generator and infrastructure as code documenter. It extracts inputs, outputs, and resources from Terraform configuration files to automatically create formatted technical guides and metadata exports. The tool functions as a multi-format metadata exporter, transforming module information into Markdown tables, AsciiDoc, JSON, YAML, XML, and TOML. It also serves as a CI/CD documentation automator, allowing for the integration of documentation updates into commit hooks and deployment pipelines. Capability areas include module documentation extra - [macourtney/drift](https://awesome-repositories.com/repository/macourtney-drift.md) (122 ⭐) — A migration library for clojure - [fosrl/pangolin](https://awesome-repositories.com/repository/fosrl-pangolin.md) (21,255 ⭐) — Pangolin is a zero-trust remote access platform designed to provide secure, identity-aware connectivity to private network resources. It functions as a cloud-native network controller that orchestrates encrypted tunnels, traffic routing, and access policies across distributed environments. By leveraging WireGuard for secure data transport, the platform enables authenticated access to internal web applications, terminal sessions, and remote desktops without exposing services to the public internet. The platform distinguishes itself through a declarative infrastructure model that synchronizes n - [encoredev/encore](https://awesome-repositories.com/repository/encoredev-encore.md) (12,049 ⭐) — Encore is a distributed systems framework designed to unify backend development, infrastructure provisioning, and observability. It functions as an infrastructure-as-code platform that allows developers to define cloud resources, databases, and messaging topics directly within their application code. By analyzing these declarations at compile-time, the system automatically manages the deployment of cloud resources and security policies, ensuring parity between local development and production environments. The platform distinguishes itself through its integrated development experience, which