Cloud Security You Can Read, Run, and Extend
Prowler is the most widely adopted open-source cloud security tool: hundreds of checks across AWS, Azure, GCP, Kubernetes, Microsoft 365, and GitHub, aligned with CIS, NIST, PCI DSS, ISO 27001, SOC 2, HIPAA, and more. Every check is open code you can audit, question, and extend.
Audit Any Cloud from Your Terminal
One command scans an entire account against hundreds of checks and maps every result to the frameworks your auditors ask about. No agents to deploy, no tickets to file, no waiting — findings in minutes, in the formats your team already uses.

One command to scan
Framework-mapped results
Built-in dashboard

Build Security Into Your Own Tools
The Python SDK is the same engine that powers the Prowler CLI and App. Run scans programmatically, embed checks into CI/CD pipelines and internal platforms, and consume findings as structured data — so security lives where your engineers already work.
Same engine as the CLI
Automate everything
Structured findings
Prowler OSS, On Your Infrastructure
Self-host the complete Prowler App with Docker Compose: web UI, API, scheduled scans, Lighthouse AI, and the MCP server — all running where your data lives, 100% consistent with Prowler Cloud.




