Top 13 cspm Open-Source Projects

• steampipe

  146 6,379 9.7 Go

  Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

  

Project mention: Steampipe: Dynamically query APIs, code and more with SQL | news.ycombinator.com | 2024-04-04

• cloudquery

  102 5,581 10.0 Go

  The open source high performance ELT framework powered by Apache Arrow

  

Project mention: We might want to regularly keep track of how important each server is | news.ycombinator.com | 2024-02-06

Check out CloudQuery - https://github.com/cloudquery/cloudquery for an easy cloud asset inventory.

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• ThreatMapper

  32 4,631 9.9 TypeScript

  Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.

  

Project mention: ThreatMapper: Open-source cloud native security observability platform | news.ycombinator.com | 2023-09-10

• cloudsploit

  6 3,172 9.9 JavaScript

  Cloud Security Posture Management (CSPM)

  

• CloudGraph cli

  24 869 1.3 TypeScript

  The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent. (by cloudgraphdev)

  

• ZeusCloud

  24 666 7.7 TypeScript

  Open Source Cloud Security

  

Project mention: Open-source IAM Access Visualizer | /r/devsecops | 2023-05-17

It’s part of an open source cloud security platform we’re maintaining. Inspired by discussions with folks in the cloud sec community sharing challenges around assessing blast radius, potential lateral movements, and IAM context around alerts they receive.

• Selefra

  36 507 7.6 Go

  The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).

  

Project mention: A Better Version Is Released - Selefra v0.2.3 | /r/Selefra | 2023-07-03

[Feature]Modules support filtering, while labels support customization of any format. by @FelixsJiang in #30

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• stackql

  5 433 8.4 Go

  Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework

  

Project mention: Cloud Tools You Probably Haven't Heard Of | dev.to | 2024-03-31

Like Steampipe's revolutionary approach, StackQL harnesses the power of SQL to query your resources seamlessly. Moreover, it empowers you to utilize SQL syntax for querying and creating resources.

• rpCheckup

  7 157 0.0 Go

  rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

  

• magpie

  4 154 7.6 Java

  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks. (by openraven)

  

Project mention: Cloud asset tracking | /r/aws | 2023-12-09

There both do something like what you're looking for.... https://github.com/cloudquery/cloudquery https://github.com/openraven/magpie

• cloud-security-list

  2 88 8.4

  A list of cloud security tools and vendors.

  

Project mention: Building a Market Overview and Buying Guide for Cybersecurity | /r/cybersecurity | 2023-11-11

• introspector

  1 66 0.0 Python

  A schema and set of tools for using SQL to query cloud infrastructure.

  

• SecurityChecklists

  3 17 0.0

  The SaaS CTO Security Checklist Redux, The DevOps Security Checklist, and The Personal Infosec & Security Checklist

cspm related posts

• Cloud Tools You Probably Haven't Heard Of
  3 projects | dev.to | 31 Mar 2024
• Cloud asset tracking
  4 projects | /r/aws | 9 Dec 2023
• Building a Market Overview and Buying Guide for Cybersecurity
  1 project | /r/cybersecurity | 11 Nov 2023
• A Better Version Is Released - Selefra v0.2.3
  1 project | /r/Selefra | 3 Jul 2023
• How to spot and troubleshoot AWS S3 bucket object traversal issues
  1 project | /r/Selefra | 25 Jun 2023
• Using GPT to Analyze Cloud Security Issues for GCP
  1 project | /r/devops | 5 May 2023
• Using GPT to Analyze Cloud Security Issues for GCP
  1 project | news.ycombinator.com | 4 May 2023
• A note from our sponsor - WorkOS
  workos.com | 25 Apr 2024

  The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com