CloudSploit by Aqua is an open source program designed to identify security vulnerabilities in cloud infrastructure accounts, including Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), Oracle Cloud Infrastructure (OCI), and GitHub.
It is designed to display a range of errors and security risks.
Provides GitHub account security features. Uses the GitHub API to download metadata about a GitHub account (repository number, configuration, security settings, etc.) which it then uses to give you best security practices.
$ git clone [email protected]: cloudsploit / scans.git
$ cd scans
$ npm install
$ ./index.js -h
CloudSploit works in two phases. First, it asks the cloud infrastructure APIs for various metadata related to your account, ie it is a "collection" phase.
Once all the necessary data is collected, the result is transferred to the "scan" phase. The scan uses the collected data to look for possible configurations, risks and other security issues, which are the result.
For more details on the program, go here.