CloudDrift

CloudDrift is a web app (with optional CLI) that detects and explains infrastructure configuration drift across AWS, Azure, and GCP. It continuously compares your actual cloud resources against your declared source of truth (Terraform state, CloudFormation, ARM/Bicep, or policy baselines) and flags risky differences: security group changes, IAM privilege creep, public exposure, deleted tags, and “click-ops” edits. It prioritizes alerts by blast radius and compliance impact, then generates a human-readable change narrative and a safe remediation plan (PR suggestions or runbook steps). This is not another generic monitoring dashboard; it’s focused on the ugly reality that most teams have partial IaC coverage and constant manual changes. The product lives or dies on accuracy (low false positives), fast onboarding, and actionable fixes rather than noisy reports.