GitHub Repository

Fast, opinionated AWS security scanner. Curated checks. Zero noise. Copy-paste fixes.

59 starsPython

Cloud-audit – AWS scanner that chains findings into attack paths

Name: Cloud-audit – AWS scanner that chains findings into attack paths
Availability: InStock
Author: gebalamariusz

by gebalamariusz·Apr 1, 2026·3 points·1 comment

Visit Project View on HN

AI Analysis

●●SolidSolve My ProblemSlick

Correlates AWS findings into attack chains with Terraform fix scripts.

Strengths

•Attack path correlation instead of isolated vulnerability findings.
•Copy-paste Terraform and AWS CLI remediation commands included.
•MCP server integration for AI agent security workflows.

Weaknesses

•Prowler and ScoutSuite already dominate AWS security scanning space.
•Attack chain logic depends on accurate threat modeling assumptions.

Similar Projects

Security●●Solid

OdinForge – Breach simulation that chains vulns into attack paths

The UI turns complex attack chains into an immediately scannable graph with per-path metrics (risk score, time-to-compromise, assets/credentials impacted) — great for threat modeling and tabletop drills. Feels more like a very polished BAS visualization than a novel research tool; what I want to know next is where the simulation inputs come from (real telemetry, vulnerability feeds, or canned scenarios).

SlickNiche Gem

Doc_Dre

214mo ago

Security●Mid

OdinForge – Breach simulation that chains vulns into attack paths

The selling point is sensible: turn individual vulns into chained attack paths so defenders can see realistic breach stories instead of isolated findings. Trouble is, the public surface is a gated sign-in with no demo, examples, or telemetry to judge how it models attacker tradeoffs or integrates with scanners and SIEMs. Visually the control-plane login is clean and modern, but the product's differentiation against established attack-simulation vendors is unclear from the page.

Niche GemSlick

Doc_Dre

104mo ago

Security●●●Banger