Cloud security auditing for AWS, Azure, GCP, Oracle, and GitHub with compliance reporting
- Stars3.7k
- Forks744
- Open Issues209
GPL-3.0
- JavaScript
- Dockerfile
About CloudSploit
CloudSploit detects security risks in cloud infrastructure accounts across AWS, Azure, GCP, Oracle Cloud Infrastructure, and GitHub. It collects account metadata from provider APIs, then scans that data for misconfigurations, risks, and other security issues using read-only access to your accounts.
It works in two phases. First it queries the cloud APIs to collect metadata, then it scans the collected data for problems. Results can be filtered by compliance mode for HIPAA, CIS, CIS1, CIS2, or PCI, and output as CSV, JSON, JUnit, or a console table. You can run a single plugin, suppress findings by pattern, and trigger remediation for named plugins.
Run it locally with Node.js after configuring credentials, or build and run it inside a Docker container. An --exit-code flag makes it a good fit for CI/CD pipelines.
Key features
- Two-phase collection and scanning workflow
- Compliance mode for HIPAA, CIS, CIS1, CIS2, and PCI
- Outputs CSV, JSON, JUnit, and table formats
- Plugin selection and suppression by pattern
- Remediation runs for named plugins
Details
- First released
- 2015
- Platforms
- CLI · Docker
- Deployment
- self-hostable · docker
- Cloud targets
- AWS · Azure · GCP · Oracle · GitHub
- Compliance
- HIPAA · CIS · PCI
- Output
- CSV · JSON · JUnit · table