Bridgecrew (@bridgecrewio)
Guthub

bridgecrewio

Twitter logo Share LinkedIn logo Share Facebook logo Share

Top repositories

1

checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Python
7,015
star
2

terragoat

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
HCL
1,139
star
3

yor

Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.
Go
812
star
4

AirIAM

Least privilege AWS IAM Terraformer
Python
771
star
5

checkov-action

This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.
HCL
238
star
6

cfngoat

Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
91
star
7

helm-scanner

Open source IaC security scanner for public Helm charts
Python
87
star
8

bridgecrew-action

This GitHub Action runs Bridgecrew against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.
72
star
9

checkov-vscode

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework, and other infrastructure-as-code-languages with Checkov by Bridgecrew in your VSCODE IDE.
TypeScript
68
star
10

kustomizegoat

Vulnerable Kustomize Kubernetes templates for training and education
HTML
47
star
11

terraform-aws-session-manager

Terraform module for deploying AWS Session Manager
HCL
43
star
12

cdkgoat

CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Python
43
star
13

redshirts

TypeScript
20
star
14

terraform-aws-route53-backup-restore

A module that backs up and restores route53 zones and records
Python
20
star
15

yor-action

Github action for Yor
TypeScript
16
star
16

HowCrew

Super-powered know how tools for AWS and GCP cloud security
Python
14
star
17

bridgecrew-orb

This CircleCI Orb Action runs Bridgecrew analysis of Infrastructure-as-Code repository. Bridgecrerw performs static security analysis of Terraform, CloudFormation and Kubernetes Infrastructure code security
11
star
18

whorf

Python
10
star
19

cdk-validator-checkov

AWS CDK policy validation plugin powered by checkov
TypeScript
7
star
20

bicepgoat

BicepGoat is Bridgecrew's "Vulnerable by Design" Bicep and ARM repository. BicepGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Bicep
7
star
21

jsonpath-ng

Finally, a JSONPath implementation for Python that aims to be standard compliant. That's all. Enjoy it.
Python
6
star
22

cloud-security-notebooks

Jupyter notebooks of various cloud security subjects
Jupyter Notebook
6
star
23

aws-collect-unused-security-groups

Track unused security groups of an AWS account over period of time with control of the interval to sample the security groups
JavaScript
6
star
24

terraform-provider-bridgecrew

USE https://github.com/paloaltonetworks/terraform-provider-bridgecrew
Go
5
star
25

terraform-aws-secured-postgresql-rds

A Terraform module to create an Amazon Web Services (AWS) PostgreSQL Relational Database Server (RDS) in a VPC, NAT implementing security best practices.
HCL
5
star
26

bridgecrew-integrations

Integrations that supported by Bridgecrew. Each integration collect data from different sensors and send the log data to Bridgecrew
HCL
4
star
27

aws-modernization-workshop-bridgecrew

HTML
4
star
28

bridgecrew-kubernetes

Resources for Kubernetes
4
star
29

terraform-aws-bridgecrew-read-only

Bridgecrew READ ONLY integration module
HCL
4
star
30

terraform-aws-bridgecrew-cloudtrail

Integrate your AWS account Cloudtrail with Bridgecrew
HCL
4
star
31

terraform-google-bridgecrew-gcp-read-only

Connecting your GCP project to Bridgecrew
HCL
3
star
32

checkov-jetbrains-ide

Checkov is a static code analysis tool for infrastructure as code.The Checkov Plugin for Intellij enables developers to get real-time scan results, as well as inline fix suggestions as they develop cloud infrastructure.
Kotlin
3
star
33

terraform-azurerm-bridgecrew-azure-read-only

Read Only module to connect Azure subscriptions to https://bridgecrew.cloud
HCL
3
star
34

bc-pipeline-utils

utils for jenkins pipelines
Groovy
2
star
35

sample-custom-checks

Example custom checks to use with the Checkov CLI.
Python
2
star
36

bc-toolbox

Bridgecrew utility scripts and more.
JavaScript
2
star
37

terraform-aws-bridgecrew-remediation

HCL
2
star
38

prisma-cloud-vscode-plugin

TypeScript
2
star
39

fluentd-dlp

Dockerfile
1
star
40

docker-syslog-integration

JavaScript
1
star
41

WHP_IaC_Scanning

A repository for the We Hack Purple mini-course on IaC scanning with Checkov. (https://checkov.io)
HCL
1
star
42

checkov-pre-receive-hooks

Shell
1
star
43

yor-choco

PowerShell
1
star
44

bridgecrew-py

Shell
1
star
45

iam-alerting-cleanup

Python
1
star
46

prisma-cloud-jetbrains-ide

The Prisma cloud Plugin for Intellij enables developers to get real-time scan results, as well as inline fix suggestions as they develop cloud infrastructure.
Kotlin
1
star