Cartography vs CloudBrute
GitHub Stats
About Cartography
Cartography is a Python tool developed by Lyft that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by Neo4j. It ingests data from AWS, GCP, Azure, Okta, GitHub, and other services to build a comprehensive map of your cloud environment. Security teams use Cartography to identify attack paths, find misconfigurations, and understand blast radius by querying relationships between resources like EC2 instances, S3 buckets, IAM roles, and security groups. Its graph-based approach makes it easy to ask questions like 'which instances can reach this database' or 'which IAM users have admin access across accounts' that would be extremely difficult with flat inventory tools.
About CloudBrute
CloudBrute is an enumeration tool used to discover cloud assets across multiple cloud service providers. By leveraging publicly accessible APIs and services, it identifies exposed company resources and infrastructure components. CloudBrute is capable of scanning for assets on popular platforms like AWS, Azure, and Google Cloud, offering insights into potential security exposures. Its utility lies in its ability to provide a comprehensive view of an organization's cloud footprint, aiding in asset management and security assessments.
Platform Support
Tags
Cartography only
CloudBrute only