appshield VS tfsec

Compare appshield vs tfsec and see what are their differences.


Security configuration checks for popular cloud native applications and infrastructure. (by aquasecurity)
Our great sponsors
  • Scout APM - Less time debugging, more time building
  • OPS - Build and Run Open Source Unikernels
  • SonarQube - Static code analysis for 29 languages.
appshield tfsec
2 6
94 3,739
- 5.6%
8.2 9.6
about 1 month ago 6 days ago
Open Policy Agent Go
- MIT License
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.


Posts with mentions or reviews of appshield. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2021-11-04.


Posts with mentions or reviews of tfsec. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2021-11-16.

What are some alternatives?

When comparing appshield and tfsec you can also consider the following projects:

terraform-security-scan - Run a security scan on your terraform with the very nice

trivy - Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

local-log4j-vuln-scanner - Simple local scanner for vulnerable log4j instances

checkov - Prevent cloud misconfigurations during build-time for Terraform, CloudFormation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

iam-policy-json-to-terraform - Small tool to convert an IAM Policy in JSON format into a Terraform aws_iam_policy_document

gokart-action - Integrate GoKart security static analysis to GitHub Actions

cli - a lightweight, security focused, BDD test framework against terraform.

gatekeeper-library - The OPA Gatekeeper policy library.

docker-bench-security - The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.

terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. [Moved to:]

trivy-plugin-kubectl - A Trivy plugin that scans the images of a kubernetes resource