Security News > 2024 > February > Prowler: Open-source security tool for AWS, Google Cloud Platform, Azure
Prowler is an open-source security tool designed to assess, audit, and enhance the security of AWS, GCP, and Azure.
"Easy to use from the command line with simple, understandable output, Prowler offers standard reporting formats like CSV and JSON, enabling users to thoroughly examine findings across any cloud provider, all in a uniform format. Its seamless integrations with Security Hub and S3 facilitate easy incorporation with other SIEMs, databases, and more. The ability to write custom checks and develop custom security frameworks is crucial for our expanding community," Toni de la Fuente, the creator of Prowler, told Help Net Security.
You can run Prowler from your workstation, an EC2 instance, Fargate, or any other container, Codebuild, CloudShell, and Cloud9.
The tool was written in Python using the AWS SDK, Azure SDK, and GCP API Python Client.
The developers are expanding Prowler with additional checks for Azure and GCP and full Kubernetes support in the upcoming version 4.0, which is scheduled for release in March.
Must read: 15 open-source cybersecurity tools you'll wish you'd known earlier.
News URL
Related news
- AWS unveils cloud security IR service for a mere $7K a month (source)
- Google Cloud Researchers Uncover Flaws in Rsync File Synchronization Tool (source)
- Microsoft Fixes AI, Cloud, and ERP Security Flaws; One Exploited in Active Attacks (source)
- Are Long-Lived Credentials the New Achilles’ Heel for Cloud Security? (source)
- Best CSPM Tools 2025: Top Cloud Security Solutions Compared (source)
- CrowdStrike vs Wiz: Which Offers Better Cloud Security and Value? (source)
- Vanir: Open-source security patch validation for Android (source)
- CISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01 (source)
- Sara: Open-source RouterOS security inspector (source)
- What’s Next for Open Source Software Security in 2025? (source)