Security That Works For You —
And Protects You From Us.
Scan your cloud for misconfigurations. Trust that your data is isolated and encrypted.
Find Misconfigurations Before Attackers Do
25 automated security checks across AWS and Azure. Zero additional cost. Opinionated, actionable, built for teams without a security engineer.
AWS — 19 Checks
| Module | Checks | Covers |
|---|---|---|
| Security Groups | 4 | SSH/RDP/all-traffic open, wide port ranges |
| S3 Buckets | 3 | Public access, missing encryption |
| RDS | 4 | Public DB, no encryption, no backups |
| IAM | 4 | Root keys, missing MFA, stale credentials |
| ECS | 2 | Plaintext secrets, missing read-only FS |
| ElastiCache | 2 | No encryption in transit, no AUTH |
Azure — 6 Checks
| Module | Checks | Covers |
|---|---|---|
| Virtual Machines | 2 | No disk encryption, no managed identity |
| PostgreSQL | 2 | Public access, low backup retention |
| Redis Cache | 2 | No TLS 1.2, no firewall rules |
Security Grade
Severity Deductions
Each finding deducts from a perfect 100:
On the Roadmap
- Scheduled daily/weekly scans with email/Slack notifications
- CIS Benchmark mapping for compliance reports
- AI-powered remediation plans via Copilot
- Expanded checks: VPC Flow Logs, CloudTrail, Azure NSG, GCP Firewall
Your Infrastructure Is Sensitive. We Treat It That Way.
Data Isolation
Multi-tenant architecture with PostgreSQL Row-Level Security. Every query is automatically scoped to your tenant. Even if application code has a bug, the database prevents cross-tenant data access.
Credential Handling
We never store long-lived cloud credentials. AWS accounts connect via IAM role assumption with external IDs. Your Anthropic API key is encrypted with AES-256 before storage.
Session Security
httpOnly, secure, sameSite cookies. No JWT tokens in localStorage. Session data stored server-side in PostgreSQL, never in the browser.
OAuth-Only Authentication
Sign in via GitHub, GitLab, or Azure DevOps. No passwords to store, no password resets to handle, no credential stuffing attacks possible.
AI Privacy (BYOK)
Your AI copilot runs on your Anthropic API key. We never see your conversations. We never absorb AI costs. Your infrastructure data stays between you and Claude.
Access Control
Four-tier RBAC: Viewer, Developer, Ops Manager, Admin. Per-user AI copilot access control. Resource protection policies prevent accidental deletion.
Audit Trail
Every action logged: who, what, when, outcome. Exportable audit logs for compliance. SOC 2-ready governance foundation.
Secure Your Cloud Today.
Get early access and run your first security scan in under 2 minutes.
No credit card required. Free during beta. Beta users get founding member pricing at launch. Built by Abaxys Tech.