KeySentry

KeySentry is a web app (with optional CLI) that continuously discovers, inventories, and governs cryptographic keys and secrets across cloud accounts, CI/CD, and SaaS tools. Instead of trying to replace your KMS or vault, it sits above them as a “control plane” that answers: where are keys stored, who can use them, which are stale, and which violate policy. It pulls metadata from AWS KMS, Azure Key Vault, Google Cloud KMS, HashiCorp Vault, GitHub Actions, and popular secret managers, then correlates usage logs to flag risky patterns like never-rotated keys, overly broad IAM grants, and keys used from unexpected workloads. It generates actionable remediation tasks (rotate, disable, tighten policy) and produces audit-ready evidence for SOC 2/ISO 27001. This is a traditional app with AI assistance for log summarization and remediation suggestions, not “AI security magic.”