prowler vs my-arsenal-of-aws-security-tools

prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more (by prowler-cloud)

Source Code

prowler.com

Suggest alternative

Edit details

my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc. (by toniblyx)

Cloud Auditing incident-response aws-inventory Iam Dfir Cloudtrail aws-infrastructure aws-lambda Security security-tools

Source Code

Suggest alternative

Edit details

Our great sponsors

InfluxDB - Power Real-Time Data Analytics at Scale

WorkOS - The modern identity platform for B2B SaaS

SaaSHub - Software Alternatives and Reviews

Our great sponsors

prowler		my-arsenal-of-aws-security-tools
	Project
24	Mentions	6
9,514	Stars	8,680
2.8%	Growth	-
9.9	Activity	5.1
about 17 hours ago	Latest Commit	3 months ago
Python	Language	Shell
Apache License 2.0	License	Apache License 2.0

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

prowler

Posts with mentions or reviews of prowler. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-05-31.

Ask HN: Cloud security auditing for indie-grade projects?
1 project | news.ycombinator.com | 4 Dec 2023

Which cloud provider?
https://github.com/prowler-cloud/prowler is easy to get going with, and gives decent results. It's much stronger at AWS than GCP or Azure.
Steampipe can be a little harder to wrap your head around, but scales really well and has broader support: https://hub.steampipe.io/mods?objectives=security
Automating AWS Prowler Scans
1 project | dev.to | 23 Aug 2023

Task Role: Select or create a new role that has the necessary permissions. Ensure this role has the three required Prowler policies and an additional custom policy to put objects into the desired S3 bucket.
Azure and M365 Secure Config Review
2 projects | /r/Pentesting | 31 May 2023

Prowler and ScoutSuite are a good start for cloud stuff.
AWS Account - Analysis
1 project | /r/aws | 24 Mar 2023
Open source alternative cloud security tool that works like Wiz/Lacework/Aqua
8 projects | /r/cybersecurity | 6 Mar 2023

Yes! There are open source cloud security tools! Here are some open source tools out there: steampipe, prowler, cloudquery, and ZeusCloud.
CSPM opensource suggestions
9 projects | /r/cloudsecurity | 15 Jan 2023

If AWS is in use then i would add prowler to the list - https://github.com/prowler-cloud/prowler This is the best open source cspm for aws.
Practical way for security assestment in AWS with Prowler
1 project | dev.to | 11 Jan 2023

More info you can find it at Prowler Github and Prowler Docs
AWS Security Scanner
1 project | news.ycombinator.com | 22 Dec 2022
Opensource equivalent of Sailpoint
1 project | /r/sysadmin | 25 Sep 2022

You’re not going to find a shiny enterprise web ui for free but there are tools out there. If you just want to review AWS accounts, you can use prowler https://github.com/prowler-cloud/prowler
Automated penetration testing for a cloud infrastructure
2 projects | /r/cybersecurity | 14 Aug 2022

Here is a good open source option to get started: https://github.com/prowler-cloud/prowler

my-arsenal-of-aws-security-tools

Posts with mentions or reviews of my-arsenal-of-aws-security-tools. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-03-06.

Open source alternative cloud security tool that works like Wiz/Lacework/Aqua
8 projects | /r/cybersecurity | 6 Mar 2023

I'm a biased vendor, but for OSS I prefer Prowler... (has a commercial tier we technically compete with but the OSS is strong and I really like the people there). Tony, who runs Prowler, also maintains an amazing list of OSS tools in multiple categories. https://github.com/toniblyx/my-arsenal-of-aws-security-tools It's hard to keep up to date but I don't know of any other list that comes close.
How to conduct security assesment of AWS?
3 projects | /r/AskNetsec | 8 Dec 2022
Using Prowler to Audit your AWS account for vulnerabilities.
2 projects | dev.to | 5 May 2022

Few days ago I came across this repository and I found Prowler(Go Star the repo).
GitHub - toniblyx/my-arsenal-of-aws-security-tools: List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
1 project | /r/purpleteamsec | 18 Jan 2022
Aws Cloud Security
1 project | /r/aws | 12 Jul 2021

Your question is lacking some context or detail, none the less here is a great repo of AWS security tools to play with: https://github.com/toniblyx/my-arsenal-of-aws-security-tools
We launched a free cloud security and compliance tool
1 project | /r/devops | 14 Jan 2021

Tons of great stuff here too: https://github.com/toniblyx/my-arsenal-of-aws-security-tools

What are some alternatives?

When comparing prowler and my-arsenal-of-aws-security-tools you can also consider the following projects:

ScoutSuite - Multi-Cloud Security Auditing Tool

Android-PIN-Bruteforce - Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

cloudmapper - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

MemLabs - Educational, CTF-styled labs for individuals interested in Memory Forensics

steampipe-mod-aws-compliance - Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.

cfn-security - A simple GitHub Action for AWS CloudFormation static code analysis to improve infrastructure-as-code security.

terraform-aws-secure-baseline - Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

opencspm - Open Cloud Security Posture Management Engine

iamzero - Identity & Access Management simplified and secure.

CIS-Ubuntu-20.04-Ansible - Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

trailscraper - A command-line tool to get valuable information out of AWS CloudTrail

prowler vs ScoutSuite my-arsenal-of-aws-security-tools vs Android-PIN-Bruteforce prowler vs cloudmapper my-arsenal-of-aws-security-tools vs MemLabs prowler vs steampipe-mod-aws-compliance my-arsenal-of-aws-security-tools vs cfn-security prowler vs terraform-aws-secure-baseline my-arsenal-of-aws-security-tools vs lynis prowler vs opencspm my-arsenal-of-aws-security-tools vs iamzero prowler vs CIS-Ubuntu-20.04-Ansible my-arsenal-of-aws-security-tools vs trailscraper

Compare prowler vs my-arsenal-of-aws-security-tools and see what are their differences.

prowler

my-arsenal-of-aws-security-tools

prowler

my-arsenal-of-aws-security-tools

What are some alternatives?