infrastructure as code and the dependence of modern software on servers for both delivery and functionality, the integration ensures that the blind spots are minimized, and that the configuration of any possible application a customer would run is covered by automated scanning mechanisms.Read Less >
CoGuard CLI GitHub Documentation
While the current scanning capabilities capture CVEs and IaC misconfigurations, this extension allows to also detect misconfigurations for software commonly deployed in your infrastructure (Postgres, Kafka, Hadoop, Cassandra, MongoDB, Redis, and many more).
CoGuard can extract your current configurations from your cloud environment, and the CLI can even find configurations within your running servers and containers. This allows you to already have the visibility into your infrastructure security posture, while enabling you to move towards an automated, infrastructure as code environment.
The average scan is done in 30s or less. Cloud snapshot extractions and scans depend on the number of different resources running on the cloud, but average out to take 20 minutes.
The evidence uploads can be performed on any other common CI/CD platform, such as Jenkins, Bitbucket pipelines, CircleCI, etc. Our team is happy to help you get set up.