Tfsec Alternatives

Similar projects and alternatives to tfsec

trivy

2 10,126 9.3 Go tfsec VS trivy

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
terraform-security-scan

- 89 3.9 Shell tfsec VS terraform-security-scan

Run a security scan on your terraform with the very nice https://github.com/liamg/tfsec
Scout APM

scoutapm.com
sponsored

Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
checkov

1 3,685 10.0 Python tfsec VS checkov

Prevent cloud misconfigurations during build-time for Terraform, CloudFormation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
local-log4j-vuln-scanner

- 364 8.5 Go tfsec VS local-log4j-vuln-scanner

Simple local scanner for vulnerable log4j instances
cli

1 1,090 8.2 Python tfsec VS cli

a lightweight, security focused, BDD test framework against terraform. (by terraform-compliance)
iam-policy-json-to-terraform

- 452 8.2 Go tfsec VS iam-policy-json-to-terraform

Small tool to convert an IAM Policy in JSON format into a Terraform aws_iam_policy_document
gatekeeper-library

1 343 7.5 Open Policy Agent tfsec VS gatekeeper-library

The OPA Gatekeeper policy library.
OPS

github.com/nanovms
sponsored

OPS - Build and Run Open Source Unikernels. Quickly and easily build and deploy open source unikernels in tens of seconds. Deploy in any language to any cloud.
docker-bench-security

1 7,559 7.0 Shell tfsec VS docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
gokart-action

- 9 3.6 Dockerfile tfsec VS gokart-action

Integrate GoKart security static analysis to GitHub Actions
OSQuery

1 18,563 9.0 C++ tfsec VS OSQuery

SQL powered operating system instrumentation, monitoring, and analytics.
SonarQube

1 6,436 9.9 Java tfsec VS SonarQube

Continuous Inspection
gosec

1 5,795 8.7 Go tfsec VS gosec

Golang security checker
kube-bench

1 4,447 8.7 Go tfsec VS kube-bench

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
falco

1 4,425 9.4 C++ tfsec VS falco

Cloud Native Runtime Security
cloud-custodian

1 3,967 9.0 Python tfsec VS cloud-custodian

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
kube-hunter

1 3,439 5.1 Python tfsec VS kube-hunter

Hunt for security weaknesses in Kubernetes clusters
gatekeeper

1 2,256 9.5 Go tfsec VS gatekeeper

Gatekeeper - Policy Controller for Kubernetes
enhancements

1 2,047 9.8 Go tfsec VS enhancements

Enhancements tracking repo for Kubernetes
cfn_nag

1 966 6.5 Ruby tfsec VS cfn_nag

Linting tool for CloudFormation templates
kubestriker

1 874 1.3 Python tfsec VS kubestriker

A Blazing fast Security Auditing tool for Kubernetes

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better tfsec alternative or higher similarity.

Suggest an alternative to tfsec

Reviews and mentions

Posts with mentions or reviews of tfsec. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2021-11-16.

Container security best practices: Comprehensive guide
17 projects | dev.to | 16 Nov 2021

If you are using infrastructure as code, incorporate IaC scanning tools like Apolicy, Checkov, tfsec, or cfn_nag to validate the configuration of your infrastructure before it is created or updated. Similar to other linting tools, apply IaC scanning tools locally and in your pipeline, and consider blocking changes that introduce security issues.
Terraform IaC Scanning with Trivy
3 projects | dev.to | 16 Oct 2021

Trivy checks Terraform IaC using TFSEC. You can take a look at all the checks that Trivy performs under the included checks documentation. In the previous example above Trivy detected a risk called: Potentially sensitive data stored in block attribute, which notified us that our code was potentially exposing sensitive data.
GitHub - aquasecurity/tfsec: Security scanner for your Terraform code
1 project | reddit.com/r/bag_o_news | 1 Sep 2021
Security scanner for Terraform code. Handy.
1 project | reddit.com/r/blueteamsec | 29 Aug 2021
tf-free: A project to create free resources on all cloud-providers
3 projects | reddit.com/r/Terraform | 6 Aug 2021

This is cool, but a suggestion: seeing a lot of "0.0.0.0/0" ingress on security groups. Might want to try to use something like https://tfsec.dev/ to make sure you're using best-practices re: security.
A simple security scanner for vulnerabilities and configuration issues in IaC such as Kubernetes, Dockerfile and Terraform
3 projects | reddit.com/r/netsec | 14 Jul 2021

For the IaC scanning there's a couple of rule sources. The Docker and Kubernetes rules come from the AppShield project (https://github.com/aquasecurity/appshield/). The Terraform Scanning is powered by tfsec (https://github.com/aquasecurity/tfsec/)

Stats

Basic tfsec repo stats

Mentions

Stars

3,739

Activity

9.6

Last Commit

3 days ago

aquasecurity/tfsec is an open source project licensed under MIT License which is an OSI approved license.

tfsec

Tfsec Alternatives

Similar projects and alternatives to tfsec

Reviews and mentions

Stats

Popular Comparisons