IaC Drift Detection

ControlMonkey

The IaC-native Cloud Governance Platform.

A platform for automating and governing Terraform at scale.

View tool details →

env0

The complete Infrastructure as Code (IaC) platform to manage all your cloud environments.

An IaC platform for managing cloud environments with governance and cost control.

View tool details →

Spacelift

The most flexible and compliant CI/CD for Infrastructure as Code.

A CI/CD platform for IaC with drift detection and policy as code.

View tool details →

CloudQuery

The open-source cloud asset inventory powered by SQL.

An open-source tool to build a cloud asset inventory and query it with SQL.

View tool details →

Scalr

The Terraform Automation & Collaboration Software.

A Terraform automation platform that provides an alternative to Terraform Cloud with features like hierarchical environments.

View tool details →

Firefly

The Cloud Asset Management Platform.

A platform for cloud asset management, IaC codification, and drift detection.

View tool details →

Snyk Infrastructure as Code

Developer security that finds and fixes security vulnerabilities in your code, open source dependencies, containers, and IaC.

A developer-focused security platform that includes IaC scanning and drift detection.

View tool details →

Terraform Cloud

Provision, manage, and connect infrastructure as code.

HashiCorp's managed service for Terraform, providing state management, collaboration, and governance features.

View tool details →

Checkov

Policy-as-code for everyone.

A static code analysis tool for infrastructure as code.

View tool details →

Prisma Cloud (Bridgecrew)

The industry’s most complete Cloud-Native Application Protection Platform (CNAPP).

A comprehensive cloud security platform that includes IaC scanning, drift detection, and compliance monitoring.

View tool details →

AccuKnox

The Cloud Native Application Protection Platform (CNAPP)

A comprehensive security platform for cloud-native applications and infrastructure.

View tool details →

Lightlytics

Prevent critical business disruptions in the cloud.

A cloud security and operations platform that simulates changes and detects drift to prevent downtime and misconfigurations.

View tool details →

JupiterOne

The Cyber Asset Attack Surface Management (CAASM) Platform.

A platform for cyber asset attack surface management.

View tool details →

Fugue

Cloud security and compliance, now part of Snyk.

A cloud security posture management (CSPM) tool for ensuring continuous compliance.

View tool details →

Orca Security

The Cloud Security Platform You Can Actually Use.

An agentless cloud security platform for workload and data protection, CSPM, and more.

View tool details →

Wiz

The Cloud Security Platform.

A cloud security platform that provides visibility and risk context across the entire cloud stack.

View tool details →

Lightspin

Contextual Cloud Security Platform.

A cloud security platform that provides contextual risk analysis.

View tool details →

Kion

The Cloud Enablement Solution

A cloud enablement platform for governance, automation, and financial management.

View tool details →

Brainboard

Visually build and manage your cloud infrastructure.

A visual cloud solution to design, deploy, and manage cloud infrastructures.

View tool details →

Snyk IaC

Find and fix security issues in your IaC files before deployment.

Find and fix security issues in your IaC configurations.

View tool details →

Lacework

The data-driven cloud security platform.

A cloud security platform that uses data and automation to drive better security outcomes.

View tool details →

Bridgecrew

Developer-first cloud security.

A cloud security platform that includes IaC scanning and drift detection, now part of Palo Alto Networks.

View tool details →

Prisma Cloud by Palo Alto Networks

The most complete Cloud-Native Application Protection Platform (CNAPP).

A comprehensive CNAPP that includes IaC scanning and drift detection.

View tool details →

KICS

Keeping Infrastructure as Code Secure.

An open-source IaC static analysis tool by Checkmarx that finds security vulnerabilities, compliance issues, and misconfigurations.

View tool details →

Tenable.cs

Secure the entire cloud-native stack.

A cloud-native security platform for the entire software lifecycle.

View tool details →

AWS CloudFormation Drift Detection

Model and provision all your cloud infrastructure resources.

A native AWS service for detecting changes made to stack resources outside of CloudFormation.

View tool details →

Datadog Cloud Security Posture Management

Continuously monitor your cloud environment for misconfigurations.

A CSPM tool that detects misconfigurations, identifies threats, and helps manage compliance.

View tool details →

New Relic Infrastructure

Monitor your entire infrastructure in one place.

An infrastructure monitoring platform with configuration change tracking.

View tool details →

Datadog Cloud Security Platform

Unified security and observability for cloud-native environments.

A security platform that combines observability and security for cloud environments.

View tool details →

tfsec

Security scanner for your Terraform code.

An open-source static analysis tool for finding security misconfigurations in Terraform.

View tool details →

New Relic

The All-in-One Observability Platform.

An observability platform that includes infrastructure monitoring and security features.

View tool details →

Digger

Open Source CI/CD for Terraform and OpenTofu.

An open-source tool that runs Terraform/OpenTofu natively in your existing CI/CD system, enabling drift detection.

View tool details →

Resoto

Your cloud, structured.

An open-source tool for cloud asset inventory and search that can be used for drift detection.

View tool details →

Terragrunt

A thin wrapper for Terraform that provides extra tools for keeping your configurations DRY, working with multiple Terraform modules, and managing remote state.

A CLI tool that provides extra helpers for keeping Terraform code DRY and managing multiple environments.

View tool details →

Steampipe

Query cloud APIs in real time using SQL.

An open-source tool that maps cloud APIs to a PostgreSQL database, allowing for live SQL queries to detect drift.

View tool details →

Terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

An open-source static code analysis tool for IaC.

View tool details →

Terradrift

A tool to detect drifts in terraform IaC.

A simple open-source tool that runs `terraform plan` across multiple directories to detect drift.

View tool details →

driftctl

The open-source tool for infrastructure drift detection.

An open-source CLI that tracks, alerts, and remedies infrastructure drift.

View tool details →

KubeDiff

A tool for Kubernetes to show differences between running state and version controlled configuration.

An open-source CLI to detect differences between Kubernetes manifests and the running cluster state.

View tool details →

Atlantis

Terraform Automation By Pull Request.

An open-source tool for automating Terraform collaboration via pull requests, with drift detection capabilities.

View tool details →

Cloud-Sploit

Cloud Security Posture Management (CSPM)

An open-source tool for scanning cloud environments for security risks.

View tool details →

Prowler

The most-used open-source tool for AWS security.

An open-source security tool for AWS, Azure, and GCP.

View tool details →

Scout Suite

Multi-Cloud Security Auditing Tool

An open-source tool for auditing the security of multi-cloud environments.

View tool details →

Pacu

The AWS exploitation framework.

An open-source exploitation framework for AWS.

View tool details →