Browse & filter

Filter by platform, license text, maturity, maintenance cadence, and editorial tags like privacy-focused or self-hosted. Search matches names, summaries, tags, and use cases.

Prowler

Top pick

Open cloud security assessment for AWS, Azure, GCP, and M365: CIS, PCI, HIPAA-style checks and compliance reports.

cloudcspmcomplianceawsazuregcp

Security & Privacy

ScoutSuite

Honorable mention

Multi-cloud security auditing: AWS, Azure, GCP, Alibaba—HTML reports highlighting misconfigurations and risky resources.

cloudauditawsazuregcp

Security & Privacy

Pacu

Also strong

Rhino Security Labs offensive AWS testing framework: modules for privilege escalation, persistence, data exfiltration, and service-specific attacks.

cloudawsred-teampentestoffensive

Security & Privacy

Cloudsplaining

Honorable mention

Analyzes AWS IAM policies for dangerous privileges, resource exposure, and data-exfiltration patterns—outputs Markdown/HTML reports.

awsiamcloudassessmentidentity

Developer Tools

LocalStack

Honorable mention

Local AWS cloud stack for development and testing.

awstestingdev