๐Ÿ” Cloud Security & Auditing

Prowler

AWS security best practices assessment, CIS benchmarks, and more.
Tags: AWS, CLI, Auditing

Cloudsplaining

Analyzes IAM policies for privilege escalation and misconfigurations.
Tags: AWS, IAM, CLI

Cartography

Security-focused asset mapping using a Neo4j graph database.
Tags: AWS, Graph, Visualization

โš™๏ธ Infrastructure as Code Security

Checkov

Static analysis of Terraform, CloudFormation, Kubernetes, and more.
Tags: IaC, Multi-Cloud, Terraform

tfsec

Security scanner for Terraform code.
Tags: Terraform, CLI

KICS

Finds vulnerabilities and compliance issues in IaC across cloud platforms.
Tags: Multi-Cloud, IaC, Scanning

๐Ÿงช Vulnerability Scanning

Trivy

Scanner for container images, SBOMs, file systems, and Git repos.
Tags: Containers, SBOM, CLI

๐Ÿ”Ž Threat Detection & Analysis

Sigma

Generic signature format for SIEM systems.
Tags: Detection, SIEM, SOC

๐Ÿ“š Notable Docs & Frameworks

AWS Security Reference Architecture (SRA)

Official AWS modular blueprints for securing multi-account environments.

Have an open-source tool to recommend? Reach out or submit a PR.