terrascan
yatas
terrascan | yatas | |
---|---|---|
1 | 2 | |
3,324 | 304 | |
- | 0.7% | |
10.0 | 4.3 | |
over 1 year ago | 4 days ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
terrascan
-
Defender for DevOps on GitHub (Terrascan edition)
As mentioned MSDO features a few different tools (I will cover some of the other tools in a future blog post), but I want to concentrate on a specific tool today called Terrascan which is part of the MSDO toolkit.
yatas
- padok-team/YATAS: A simple tool to audit your AWS infrastructure for misconfiguration or potential security issues with plugins integration
-
Open-Source AWS audit tool for security and misconfiguration
I currently have 62 checks on AWS. You can check it out here.
What are some alternatives?
cloudknit - Self-service management of complex Cloud Environments
yatas-template - Template for creating a plugin for YATAS
klotho - Klotho - write AWS applications at lightning speed
prowler - Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 240 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks. [Moved to: https://github.com/prowler-cloud/prowler]
aws-sso-cli - A powerful tool for using AWS Identity Center for the CLI and web console.
terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. [Moved to: https://github.com/accurics/terrascan]
MSDO-Lab - Microsoft Security DevOps (MSDO) Lab for testing Defender for DevOps integration on Azure.
tfsec - Security scanner for your Terraform code
terraform-provider-checkly - Terraform provider for the Checkly monitoring service
qovery-cli - Qovery Command Line Interface
Netris.ai - The Kubernetes Operator for Netris
terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.