CloudSentry

CloudSentry is a web app (with optional CLI) that continuously scans AWS, Azure, and GCP accounts for high-risk misconfigurations and “quiet” exposures that slip past basic checks: public buckets, overly permissive IAM, forgotten access keys, risky security group rules, and unencrypted data services. It connects via read-only roles, normalizes findings across clouds, and prioritizes what actually matters using context (internet exposure, privilege level, data sensitivity tags, and blast radius). It generates ticket-ready remediation steps and can open PRs for IaC repos (Terraform) rather than asking engineers to click around consoles. This is a combination traditional + AI app: traditional rules and graph analysis for accuracy, AI only for summarizing, deduplicating, and producing human-readable fixes. The product is deliberately narrow: misconfig detection + actionable remediation, not a full SIEM.