CloudSploit covers dozens of services and hundreds of best-practice checks across AWS, Azure, Google Cloud, Oracle Cloud, and GitHub, providing a single source of truth for security posture and compliance across all your cloud accounts and geographies.
Get reports mapped to the popular CIS Foundation Benchmark tests for public clouds, allowing you to evaluate the security of your cloud accounts according to the best practices defined by the Center for Internet Security.
Use ready-made scans and reports for PCI-DSS and HIPAA compliance requirements. Get reports by region, cloud provider service category (e.g., AWS EC2, AWS S3), severity level, etc. Export as CSV or PDF. Customize alerts for specific types of checks and conditions.
At its core, CloudSploit is based on open source (link to github), using a unique plug-in architecture that is easy to extend and enhance. Need to test a specific cloud service against a best practice that’s currently not covered? Creating a plug-in is easy. This also provides transparency into what is checked and how it is checked – great for auditors and compliance officers.
Automated security for “infrastructure as code” by checking CloudFormation templates and GitHub configuration for security risks before applications are deployed, essentially “shifting left” security and avoiding risk and security incidents when applications are deployed in production.
Gain visibility into all cloud control-plane API calls in real time. Analyze events for security-sensitive events or potential malicious activity, based on out-of-the-box rules created by security experts, with no additional configuration required.
Manage multiple users and teams, enable SSO with SAML 2.0, and integrate with SIEM and collaboration tools including Splunk, Slack, OpsGenie, PagerDuty, Microsoft Teams and more. Fully documented RESTful API makes it easy to create additional integrations and automate workflows.