tfsec
Security scanner for Terraform code that catches misconfigurations early
tfsec (now Trivy) is a fast, open-source security scanner for Terraform code that detects potential security misconfigurations and vulnerabilities in infrastructure definitions before they are deployed. It checks for common Terraform anti-patterns like unrestricted security group rules, publicly exposed S3 buckets, unencrypted RDS instances, and missing logging configurations. tfsec integrates into git pre-commit hooks and CI pipelines to enforce infrastructure security standards.
Key Features
- ✓Terraform scanning
- ✓Misconfig detection
- ✓Pre-commit integration
- ✓CI/CD support
- ✓Custom checks
- ✓JSON/SARIF output
Quick Info
- Category
- Security
- Pricing
- Free
More Security Tools
Darktrace
SecurityAI-powered cybersecurity platform that uses self-learning AI to detect and autonomously respond to cyber threats in real time.
CrowdStrike Charlotte AI
SecurityCrowdStrike's generative AI security analyst that answers threat questions, investigates incidents, and accelerates response.
Vectra AI
SecurityAI-driven threat detection and response platform that identifies attacker behavior across hybrid and multi-cloud environments.
Recorded Future AI
SecurityAI-powered threat intelligence platform