Prowler
Open cloud security assessment for AWS, Azure, GCP, and M365: CIS, PCI, HIPAA-style checks and compliance reports.
Why it is included
Actively maintained multi-cloud posture scanner with strong CLI and CI use.
Best for
Cloud security reviews and continuous compliance dashboards.
Strengths
- Multi-cloud
- Compliance frameworks
- Provider APIs depth
Limitations
- Cloud credential scope must be least-privilege
Good alternatives
ScoutSuite · commercial CSPM
Related tools
Security & Privacy
ScoutSuite
Multi-cloud security auditing: AWS, Azure, GCP, Alibaba—HTML reports highlighting misconfigurations and risky resources.
Security & Privacy
Checkov
Static analysis for Terraform, CloudFormation, Kubernetes, Docker, and more—hundreds of built-in policy checks.
Security & Privacy
Steampipe
SQL layer over cloud and SaaS APIs—compose compliance and inventory queries across AWS, Azure, GCP, GitHub, Okta, and hundreds of plugins.
Security & Privacy
Cloud Custodian
Rules engine for public cloud governance: tag enforcement, unused resource cleanup, KMS/SG checks, and compliance filters across AWS/Azure/GCP.
Security & Privacy
Pacu
Rhino Security Labs offensive AWS testing framework: modules for privilege escalation, persistence, data exfiltration, and service-specific attacks.
Security & Privacy
Cloudsplaining
Analyzes AWS IAM policies for dangerous privileges, resource exposure, and data-exfiltration patterns—outputs Markdown/HTML reports.