Codified cloud security resources
Everything you need to navigate through the Bridgecrew universe
Webinars and panels
Codified IaC security at scale with Bridgecrew and Terraform Cloud
Upcoming on Feb 17
Join our chat with HashiCorp to learn best practices for moving fast with Terraform Cloud by automating and codifying policy enforcement.
Cloud DevSecOps with Bridgecrew and CloudFormation
Get hands-on experience with codified cloud security for AWS infrastructure and automated DevSecOps workflows using Bridgecrew and CloudFormation.
Getting started with Bridgecrew
See Bridgecrew in action with our Co-founder and VP of Product, Guy Eisenkot. Guy demonstrates how our platform leverages automation and delivers security-as-code to streamline infrastructure security from commit to cloud.
Collaborating with DevOps to Automate Cloud Security at Scale
We join the security experts at AWS, Databricks, and Robinhood to discuss how and why security and DevOps teams should be working together to build scalable cloud security strategies.
Infrastructure as code scanning in your CI/CD workflow with Bridgecrew and CircleCI
Learn how to use Bridgecrew’s CircleCI orb to scan your infrastructure for misconfigurations and implement infrastructure as code security best practices.
Recent blog posts
Complete cloud visibility with Bridgecrew’s new Resource Inventory
Resource Inventory provides comprehensive cloud visibility with a single view of all resources filtered by type, tag, and more!
2020 Year in Review
2020 was a year to remember for all of us at Bridgecrew. Our 2020 recap celebrates our accomplishments and gives thanks to all that contributed.
Bridgecrew Code Reviews
Review and fix newly identified IaC misconfigurations on every commit with Bridgecrew’s newest platform addition—Code Reviews!
Infrastructure security at scale with Bridgecrew for Terraform Cloud
To streamline Terraform security scanning and policy enforcement, we’re excited to announce our native Terraform Cloud integration.
Build an IaC security and governance program
Our strategy guide helps you determine where and how to enforce security controls to meet your goals without slowing your developers down.
Best practices for securing IAM on AWS
Pick up these best practices and tools for Identity and Access Management, a crucial component of cloud security.
Open source projects
We’re huge supporters of open source and are the proud creators and maintainers of a few security projects—with more to come.

Checkov
Scan your infrastructure as code repositories for misconfigurations. Checkov is open source and can be run locally or as part of your CI/CD pipeline.

AirIAM
Least privilege your AWS IAM automatically. AirIAM transforms existing configurations into a new right-sized Terraform template.

TerraGoat
Learn the risks and common mistakes when configuring Terraform modules with our vulnerable-by-design security training tool, TerraGoat.

CfnGoat
Learn how to spot and fix misconfigured CloudFormation templates with CfnGoat, our companion to TerraGoat.