steampipe-mod-aws-compliance VS prowler

Compare steampipe-mod-aws-compliance vs prowler and see what are their differences.

steampipe-mod-aws-compliance

Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe. (by turbot)

prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more (by prowler-cloud)
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
steampipe-mod-aws-compliance prowler
18 24
343 9,403
2.6% 3.7%
8.4 9.9
6 days ago 7 days ago
HCL Python
Apache License 2.0 Apache License 2.0
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

steampipe-mod-aws-compliance

Posts with mentions or reviews of steampipe-mod-aws-compliance. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-02-08.

prowler

Posts with mentions or reviews of prowler. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-05-31.
  • Azure and M365 Secure Config Review
    2 projects | /r/Pentesting | 31 May 2023
    Prowler and ScoutSuite are a good start for cloud stuff.
  • Open source alternative cloud security tool that works like Wiz/Lacework/Aqua
    8 projects | /r/cybersecurity | 6 Mar 2023
    Im using prowler for aws and recently they added support for Azure, which ia great. Prowler Its not exactly a 100% cspm, but with some tweaking and integrations, it might be. Im usually running this is a 1 time assessment to see the current status of the environment.
    8 projects | /r/cybersecurity | 6 Mar 2023
    Yes! There are open source cloud security tools! Here are some open source tools out there: steampipe, prowler, cloudquery, and ZeusCloud.
  • CSPM opensource suggestions
    9 projects | /r/cloudsecurity | 15 Jan 2023
    If AWS is in use then i would add prowler to the list - https://github.com/prowler-cloud/prowler This is the best open source cspm for aws.
  • Automated penetration testing for a cloud infrastructure
    2 projects | /r/cybersecurity | 14 Aug 2022
    Here is a good open source option to get started: https://github.com/prowler-cloud/prowler
  • Pentesting
    2 projects | /r/AskNetsec | 28 Jul 2022
    To add onto what /u/mekkr_ has said; you can also use tools like Prowler to ensure your environment is compliant. Prowler also has conmon and forensic capabilities.
  • Using Prowler to Audit your AWS account for vulnerabilities.
    2 projects | dev.to | 5 May 2022
    Few days ago I came across this repository and I found Prowler(Go Star the repo).
  • About Optimizing for Speed: How to do complete AWS Security&Compliance Scans in 5 minutes
    3 projects | dev.to | 14 Apr 2022
    Prowler
  • Automating Prowler for Compliance Checking in AWS
    2 projects | dev.to | 27 Mar 2022
    AWSTemplateFormatVersion: "2010-09-09" Description: "Create EC2 instanace with Prowler pre-configured and tied to roles to run" # Template Parameters # ImageId : Default is AWS Linux 2 ami-0e1d30f2c40c4c701 # InstanceType : Default is t3.micro # VpcId : VPC to launch in # SubnetId : Subnet to connect # KeyName : Keypair to use # CidrIp : CIDR range for SSH x.x.x.x/x Resources: # Create Prowler Instance - Parameters for ImageId, InstanceType, SubnetId, SecurityGroupIds, and KeyName ProwlerInstance: Type: 'AWS::EC2::Instance' Properties: ImageId: !Ref ImageId InstanceType: !Ref InstanceType SubnetId: !Ref SubnetId SecurityGroupIds: - !Ref InstanceSecurityGroup KeyName: !Ref KeyName IamInstanceProfile: !Ref ProwlerInstanceProfile Tags: - Key: Name Value: Prowler BlockDeviceMappings: - DeviceName: /dev/xvda Ebs: VolumeSize: 8 Encrypted: true # Run bash to install and configure Prowler UserData: Fn::Base64: !Sub | #!/bin/bash -xe sudo yum update -y sudo yum remove -y awscli cd /home/ec2-user curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "/home/ec2-user/awscliv2.zip" unzip /home/ec2-user/awscliv2.zip sudo /home/ec2-user/aws/install sudo yum install -y python3 jq git sudo pip3 install detect-secrets==1.0.3 git clone https://github.com/prowler-cloud/prowler /home/ec2-user/prowler chown -R ec2-user:ec2-user /home/ec2-user/prowler ProwlerInstanceProfile: Type: AWS::IAM::InstanceProfile Properties: InstanceProfileName: prowler-ec2-instance-profile Path: / Roles: - !Ref ProwlerEc2InstanceRole # Create Security Group InstanceSecurityGroup: Type: AWS::EC2::SecurityGroup Properties: GroupDescription: Allow ssh from specific host GroupName: ProwlerSecurityGroup VpcId: !Ref VpcId SecurityGroupIngress: - IpProtocol: 'tcp' FromPort: '22' ToPort: '22' CidrIp: !Ref CidrIp # Create EC2 Instance Role to run security checks and attach to instance ProwlerEc2InstanceRole: Type: AWS::IAM::Role Properties: RoleName: prowler-ec2-instance-role AssumeRolePolicyDocument: Version: 2012-10-17 Statement: - Effect: Allow Principal: Service: - ec2.amazonaws.com Action: - sts:AssumeRole ManagedPolicyArns: - arn:aws:iam::aws:policy/SecurityAudit - arn:aws:iam::aws:policy/job-function/ViewOnlyAccess Path: / # Parameters for cloudformation template with some defaults Parameters: ImageId: Type: String Description: AMI - Linux 2 Default: 'ami-0e1d30f2c40c4c701' InstanceType: Type: String Description: Instance type to be used - t3.micro default Default: t3.micro VpcId: Type: AWS::EC2::VPC::Id Description: VPC to be used SubnetId: Type: AWS::EC2::Subnet::Id Description: Subnet to be used KeyName: Type: AWS::EC2::KeyPair::KeyName Description: Keyname CidrIp: Type: String Description: CidrIp to be used to connect from x.x.x.x/x Metadata: AWS::CloudFormation::Interface: ParameterGroups: - Label: default: "Network Configuration" Parameters: - ImageId - InstanceType - VpcId - SubnetId - KeyName - CidrIp Conditions: {}
  • Starting to use AWS CLI at work. Need beginner tips.
    4 projects | /r/aws | 16 Jan 2022
    For SecOps often a wrapper library like https://github.com/toniblyx/prowler will provide you the results you need for audits. If they don't exist natively then you can extend the library to add them for future use.

What are some alternatives?

When comparing steampipe-mod-aws-compliance and prowler you can also consider the following projects:

ScoutSuite - Multi-Cloud Security Auditing Tool

cloudquery - The open source high performance data integration platform built for developers.

cloudmapper - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

terraform-aws-secure-baseline - Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

opencspm - Open Cloud Security Posture Management Engine

CIS-Ubuntu-20.04-Ansible - Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

terraform-security-scan - Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec

Android-PIN-Bruteforce - Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

steampipe-mod-zoom-compliance - Run individual configuration, compliance and security controls or full compliance benchmarks for CIS for Zoom using Powerpipe and Steampipe.

aws-wsl2-environment - Bash script to setup development environment for AWS under WSL2 for Windows 10 using Ubuntu 20-04. aws-cli, aws-cdk, SSH for git, AWS utilities cfn-diagram and cfn-lint, jq JSON parser and associated dependencies.