For the complete documentation index, see /llms.txt. Markdown version of this page: /en/products/aikido/iac-scanning.md.
EN / NB Contact us →
EN / NB

Consulting

MDR / SOC

Vulnerability Management

Identity

Compliance

AI Security

CrowdStrike

Aikido

Tenable

Idira (CyberArk)

Browse

Series

Events & resources

About us

Company info

Contact

Partners

Code

Infrastructure as Code (IaC)

Infrastructure as Code (IaC) scanning reviews the files that define cloud infrastructure. It looks for misconfigurations before that infrastructure is deployed.

What it is

Infrastructure as Code means defining servers, networks, and services in configuration files. A small mistake in those files can open a security hole once deployed. This module checks the files ahead of time so problems are caught early.

Key capabilities

  • Scans Terraform files.
  • Scans CloudFormation templates.
  • Scans Kubernetes manifests.
  • Scans Dockerfiles.
  • Flags misconfigurations before deploy.

Who it’s for

It fits teams that manage cloud infrastructure through code. It helps platform and DevOps engineers avoid risky settings. It suits any project that provisions infrastructure from configuration files.

Read more on Aikido

Questions or inquiry? [email protected] Contact us →