Infrastructure as Code (IaC) Security Tools
Site Reliability Engineering
The Fugue Platform - A Cloud Security Posture Management (CSPM) platform that uses the same policy engine for every stage of the cloud development lifecycle (CDLC) to eliminate wasted time and resources.
InsightCloudSec enables you to drive innovation through continuous security and compliance.
Checkov scans cloud infrastructure configurations to find misconfigurations before they're deployed.
TFLint is a framework and each feature is provided by plugins. Find possible errors (like illegal instance types) for Major Cloud providers (AWS/Azure/GCP).
Accurics enables self-healing cloud native infrastructure by codifying security throughout your development lifecycle.
CloudSploit is a security and configuration scanner that can detect thousands of threats in your cloud accounts.
Snyk Infrastructure as Code (Snyk IaC) helps developers write secure configurations, well before anything reaches production.
Indeni Cloudrail - Automate security reviews of infrastructure-as-code, so you can build your cloud fast and securely with 3x less noise than comparable tools.
With Bridgecrew, teams can also leverage IaC to enforce cloud security earlier in the development lifecycle to minimize risk and maintain cloud compliance.
The Kubernetes Platform