The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 13 cspm Open-Source Projects
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
ThreatMapper
Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
-
CloudGraph cli
The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent. (by cloudgraphdev)
-
Selefra
The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
stackql
Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework
-
rpCheckup
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
-
magpie
A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks. (by openraven)
-
SecurityChecklists
The SaaS CTO Security Checklist Redux, The DevOps Security Checklist, and The Personal Infosec & Security Checklist
Project mention: Steampipe: Dynamically query APIs, code and more with SQL | news.ycombinator.com | 2024-04-04
Project mention: We might want to regularly keep track of how important each server is | news.ycombinator.com | 2024-02-06Check out CloudQuery - https://github.com/cloudquery/cloudquery for an easy cloud asset inventory.
Project mention: ThreatMapper: Open-source cloud native security observability platform | news.ycombinator.com | 2023-09-10
It’s part of an open source cloud security platform we’re maintaining. Inspired by discussions with folks in the cloud sec community sharing challenges around assessing blast radius, potential lateral movements, and IAM context around alerts they receive.
[Feature]Modules support filtering, while labels support customization of any format. by @FelixsJiang in #30
Like Steampipe's revolutionary approach, StackQL harnesses the power of SQL to query your resources seamlessly. Moreover, it empowers you to utilize SQL syntax for querying and creating resources.
There both do something like what you're looking for.... https://github.com/cloudquery/cloudquery https://github.com/openraven/magpie
Project mention: Building a Market Overview and Buying Guide for Cybersecurity | /r/cybersecurity | 2023-11-11
cspm related posts
- Cloud Tools You Probably Haven't Heard Of
- Cloud asset tracking
- Building a Market Overview and Buying Guide for Cybersecurity
- A Better Version Is Released - Selefra v0.2.3
- How to spot and troubleshoot AWS S3 bucket object traversal issues
- Using GPT to Analyze Cloud Security Issues for GCP
- Using GPT to Analyze Cloud Security Issues for GCP
-
A note from our sponsor - WorkOS
workos.com | 25 Apr 2024
Index
What are some of the best open-source cspm projects? This list will help you:
Project | Stars | |
---|---|---|
1 | steampipe | 6,379 |
2 | cloudquery | 5,581 |
3 | ThreatMapper | 4,631 |
4 | cloudsploit | 3,172 |
5 | CloudGraph cli | 869 |
6 | ZeusCloud | 666 |
7 | Selefra | 507 |
8 | stackql | 433 |
9 | rpCheckup | 157 |
10 | magpie | 154 |
11 | cloud-security-list | 88 |
12 | introspector | 66 |
13 | SecurityChecklists | 17 |
Sponsored