IaC Drift Detection
Compare 33 iac drift detection tools to find the right one for your needs
π§ Tools
Compare and find the best iac drift detection for your needs
ControlMonkey
A Terraform automation platform that provides drift detection, code generation, and CI/CD pipelines.
env0
An IaC automation platform that supports Terraform, Terragrunt, and other frameworks with drift detection.
Spacelift
A CI/CD platform for IaC that provides drift detection, policy enforcement, and collaboration tools.
CloudQuery
An open-source tool that loads cloud asset configurations into a database, enabling drift detection via SQL queries.
Scalr
A Terraform automation platform that provides an alternative to Terraform Cloud with features like hierarchical environments.
Firefly
A platform for cloud asset management, visibility, and governance that includes robust IaC drift detection.
Snyk Infrastructure as Code
A developer-focused security platform that includes IaC scanning and drift detection.
Terraform Cloud
HashiCorp's managed service for Terraform, providing state management, collaboration, and governance features.
Checkov
An open-source static analysis tool for IaC that can be used to detect certain types of drift.
Prisma Cloud (Bridgecrew)
A comprehensive cloud security platform that includes IaC scanning, drift detection, and compliance monitoring.
Lightlytics
A cloud security and operations platform that simulates changes and detects drift to prevent downtime and misconfigurations.
Orca Security
An agentless cloud security platform that provides workload and data protection, CSPM, and more.
Wiz
An agentless cloud security platform that provides a full-stack view of risks.
Lightspin
A CNAPP acquired by Cisco that uses graph technology to find attack paths.
Fugue
A former cloud security posture management tool, now integrated into Snyk, that used OPA to detect drift.
Lacework
A CNAPP that uses anomaly detection to identify threats and misconfigurations.
Snyk IaC
A developer-focused security tool that scans IaC for misconfigurations and can detect infrastructure drift.
Brainboard
A visual cloud solution that allows designing, deploying, and managing infrastructure, with drift detection features.
Prisma Cloud by Palo Alto Networks
A comprehensive CNAPP that includes IaC scanning and drift detection.
Bridgecrew
A cloud security platform that includes IaC scanning and drift detection, now part of Palo Alto Networks.
AWS CloudFormation Drift Detection
A native AWS service for detecting changes made to stack resources outside of CloudFormation.
KICS
An open-source IaC static analysis tool by Checkmarx that finds security vulnerabilities, compliance issues, and misconfigurations.
Datadog Cloud Security Posture Management
A CSPM tool that detects misconfigurations, identifies threats, and helps manage compliance.
New Relic
An observability platform that includes infrastructure monitoring and security features.
tfsec
An open-source static analysis tool for finding security misconfigurations in Terraform.
Terragrunt
A popular open-source wrapper for Terraform that can help in detecting drift through its command structure.
Digger
An open-source tool that runs Terraform/OpenTofu natively in your existing CI/CD system, enabling drift detection.
Resoto
An open-source tool for cloud asset inventory and search that can be used for drift detection.
driftctl
An open-source CLI tool to detect drift between IaC configuration and the actual state of cloud resources.
Terrascan
An open-source static code analyzer for IaC that helps detect policy non-compliance, which can be a form of drift.
Atlantis
An open-source tool for automating Terraform collaboration via pull requests, with drift detection capabilities.
Steampipe
An open-source tool that maps cloud APIs to a PostgreSQL database, allowing for live SQL queries to detect drift.
Terradrift
A simple open-source tool that runs `terraform plan` across multiple directories to detect drift.