Prowler Open Source

Cloud Security You Can Read, Run, and Extend

Prowler is the most widely adopted open-source cloud security tool: hundreds of checks across AWS, Azure, GCP, Kubernetes, Microsoft 365, and GitHub, aligned with CIS, NIST, PCI DSS, ISO 27001, SOC 2, HIPAA, and more. Every check is open code you can audit, question, and extend.

Prowler CLI

Audit Any Cloud from Your Terminal

One command scans an entire account against hundreds of checks and maps every result to the frameworks your auditors ask about. No agents to deploy, no tickets to file, no waiting — findings in minutes, in the formats your team already uses.

Prowler dashboard showing scan results
Prowler CLI running a scan in the terminal
Prowler SDK

Build Security Into Your Own Tools

The Python SDK is the same engine that powers the Prowler CLI and App. Run scans programmatically, embed checks into CI/CD pipelines and internal platforms, and consume findings as structured data — so security lives where your engineers already work.

Prowler Local Server

Prowler OSS, On Your Infrastructure

Self-host the complete Prowler App with Docker Compose: web UI, API, scheduled scans, Lighthouse AI, and the MCP server — all running where your data lives, 100% consistent with Prowler Cloud.

Self-hosted Prowler App architecture