Prowler January Newsletter

This is a republishing of our monthly newsletter.

Do you have a Prowler success story you’d like to share? Let us know and we’ll send you some swag!

Happy New Year, Prowler community!

What’s this? It’s our new monthly newsletter – straight from our engineers to your inbox with insights from our team, industry news worth reading, and upcoming virtual and online events. We’re thrilled to kick off the year with some exciting updates.

Our newest release, Prowler 5, introduces powerful features to help strengthen your multi-cloud security posture.As we build and grow our resources for using Prowler, tomorrow we have a Learning Lab focused on the Prowler Web UI, where you’ll get hands-on guidance to make the most of our latest tools.

There is a lot to cover, so let’s jump in:

Product Updates

Prowler 5: Next-Level Multi-Cloud Security
Prowler 5 brings brand-new capabilities designed to streamline your security assessments and help you proactively manage risk across your AWS, GCP, Azure and Kubernetes environments.

Prowler 5.2 is Available for Every Cloud
We’re excited to share Prowler 5.2 with you. It’s designed to simplify your multi-cloud journey across AWS, GCP, Azure, and Kubernetes, letting you worry less about setup hurdles and more about what really matters: securing your environments.

Resource Spotlight

Create a consolidated report of Prowler security findings from multiple AWS accounts
Looking for a unified view of your security posture across multiple AWS accounts? This AWS Prescriptive Guidance shows how to consolidate Prowler findings, helping streamline reporting and quickly pinpoint areas that need attention.

Community Highlights

How to Automate AWS Security Assessments with Prowler & Security Hub – A Serverless Project (Part 1)
This step-by-step guide from Cybr shows how to automate security assessments using Prowler and push findings directly into Security Hub—all without deploying a single server! Get a firsthand look at setting up a serverless workflow for continuous, real-time insight into your AWS security posture, perfect for both beginners and seasoned Prowler users.

AWS Security Best Practices Assessments Using Prowler
In this Medium post, Prowler community member Aakib Khan walks through using Prowler to quickly conduct AWS security best practices assessments and highlights key checks to keep your environment secure.

Prowler and AWS Security Hub
TechWithTyler demonstrates how Prowler integrates with AWS Security Hub, offering practical tips for setting up comprehensive security scanning and reporting across your AWS accounts.

Top Infrastructure-as-Code Security Tools
Anthony Critelli includes Prowler in his roundup of essential security tools for Infrastructure as Code (IaC). Learn why Prowler stands out for thorough cloud security assessments.

Open Source Cloud Security Posture Management Tools
AI Multiple reviews the best open-source CSPM tools and highlights Prowler for its robust AWS, GCP, Azure and Kubernetes security checks, compliance capabilities, and active community support.

Finding Infrastructure Security Misconfigurations at Scale
In this LinkedIn post, Artem Marusov shows how to identify infrastructure misconfigurations efficiently. He discusses real-world strategies for scaling security with Prowler playing a vital role in automating checks across multiple environments.

From the Prowler Team

Securing Your Amazon Bedrock Environments with Prowler
Learn how to keep your AI deployments safe with Prowler. This post highlights practical steps and insights for safeguarding Amazon Bedrock environments, so you can innovate confidently.

Following Breadcrumbs to Code: A Proof of Concept
Curious how an idea transforms into a working solution? Take a behind-the-scenes look at our journey coding a proof of concept—one breadcrumb at a time.

Upcoming Webinars and Learning Labs

The Prowler Web UI
January 30 – Register
Want a deeper dive into Prowler’s capabilities? This Learning Lab walks you through the Prowler Web UI, providing hands-on experience and best practices for leveraging its powerful monitoring and reporting tools.

Getting Started with Prowler API
February 6 – Register
Ready to integrate Prowler into your existing workflows? This event covers the basics of using the Prowler API, including setup, best practices, and how to incorporate powerful security checks into your applications.

Getting Started with Prowler SDK Core
February 13 – Register
Dive deeper into the Prowler SDK. Learn how to build on its core functionalities, automate security scans, and create custom solutions to strengthen your cloud environment.

Getting Started with Prowler Detections and Remediations
February 20 – Register
Discover how to efficiently detect vulnerabilities and apply best-practice remediation strategies using Prowler. We’ll guide you through the process of identifying security gaps and resolving them promptly.

Getting Started with Prowler and Compliance
February 27 – Register
Stay ahead of compliance requirements with Prowler’s built-in checks. This event demonstrates how to use Prowler to ensure your AWS environment meets industry standards and regulations, helping you maintain continuous compliance.

Prowler IRL

CNCF event with AWS – February 5 | Madrid
This one afternoon event with Cloud Native Computing Foundation and AWS to know what we all are building around Open Source and cloud computing.

Seasides – February 20-22 | Goa
We will contribute with a 8 hours workshop to secure multi-cloud environments from the ground up.

RootedCON – March 6-8 | Madrid
Join some of the Prowler engineers at RootedCON Madrid, this March, we will be at the CriptoredCON track. Come to see us, we have limited edition swag and be available to answer all your burning Prowler questions.

RSAC April 28 – May 1 | San Francisco
Our team will be attending RSAC in San Francisco. Be sure to find us and say hello for some exclusive RSAC swag, or even a pint with our Founder & CEO Toni de la Fuente (if there isn’t a marathon that weekend, that is).