Codified cloud security resources
Everything you need to navigate through the Bridgecrew universe
Recent blogs and webinars
Blog
Learn how Bridgecrew embeds throughout the AWS ecosystem to automate cloud security and compliance.
Live panel
Learn from the industry’s top security leaders about best practices for collaborating across security and DevOps.
Blog
Read about the basics of infrastructure as code (IaC) in this blog overview about how to approach IaC security.
Tutorial
Learn how to scan Terraform for misconfigurations using Bridgecrew and GitHub.
Blog
Read about the difference between securing infrastructure in build-time versus run-time.
On-demand webinar
Watch our recent webinar with HashiCorp on how to secure Terraform at scale.
Open source projects
We’re huge supporters of open source and are the proud creators and maintainers of a few security projects—with more to come.
Checkov
Scan your infrastructure as code repositories for misconfigurations. Checkov is open source and can be run locally or as part of your CI/CD pipeline.
AirIAM
Least privilege your AWS IAM automatically. AirIAM transforms existing configurations into a new right-sized Terraform template.
TerraGoat
Learn the risks and common mistakes when configuring Terraform modules with our vulnerable-by-design security training tool, TerraGoat.
CfnGoat
Learn how to spot and fix misconfigured CloudFormation templates with CfnGoat, our companion to TerraGoat.
