Ever needed to verify security and compliance across your multi-cloud infrastructure at low cost while keeping complete control over webhooks and alerting? Kexa.io makes it effortless.
- Run everywhere at low cost - Lightweight script deployment
- Easy addon development - Build custom integrations
- Share YAML rules - Community-driven compliance patterns in simple YAML format
- Core open source - Transparent, auditable foundation
- Keep full control and your data stays with you.
Kexa is an open-source compliance management tool that simplifies security and compliance across multiple cloud platforms including Azure, Google Cloud, AWS, and more. It provides:
Kexa works by scanning your cloud environments based on your configuration, applying customizable compliance rules, and notifying you of any violations. The process is simple:
- Scan: Kexa scans your configured cloud environments using provider credentials
- Analyze: It applies your defined compliance rules to the collected data
- Report: Based on severity levels and notification settings, Kexa alerts you through your preferred communication channels
This straightforward scan-and-verify approach makes it easy to maintain compliance across your entire cloud infrastructure.
Here is an example of the Kexa engine:
๐ Multi-Cloud Storage Security Continuously verify Block Public Access settings across AWS S3, GCP Cloud Storage, and Azure Blob Storage. Prevent data exposure by ensuring all storage buckets remain private across your entire infrastructure.
๐พ Cost & Security Optimization Automatically detect unattached disks across AWS EBS, GCP Persistent Disks, and Azure Managed Disks. Eliminate unnecessary costs while preventing potential security risks from orphaned storage resources.
๐ค Azure ML Operations Monitoring Monitor Azure Machine Learning workspace health by checking for failed training jobs and pipeline executions. Ensure your ML operations run smoothly with proactive failure detection and alerting.
-
clone and run samples from our samples repo example with http check
git clone https://github.com/kexa-io/kexa-samples cd kexa-samples -
choose your example with http check, copy secret and modify if necessary.
cd samples/http cp .env-sample .env -
run docker-compose
docker-compose up
- BunJS installed
- Cloud provider credentials (Azure, AWS, GCP, etc.)
-
Clone the repository:
git clone https://github.com/kexa-io/Kexa.git cd Kexa -
Install dependencies:
bun install
-
Run Kexa:
bun run ./Kexa/main.ts
-
You can configure Kexa by editing the
default.conffile inside theconfigfolder and re-run the script.
This will check the website <kexa.io> by default.
see https://github.com/kexa-io/kexa-samples for samples.
- Docker Compose: Use our Docker Compose file
- Docker: Use our Docker image
- GitHub Action: Use our GitHub Action
- Kubernetes: Deploy using our Kubernetes manifests
- Azure Function: Deploy as an Azure Function
- Multi-Cloud Support: Works with major cloud providers (Azure, AWS, GCP)
- Platform Support: Integrates with GitHub, Kubernetes
- Workspace Support: Compatible with Office 365 and Google Workspace
- Custom Rules: Create and modify compliance rules to match your needs
- Real-time Monitoring: Get instant alerts for compliance violations
- Flexible Deployment: Run as a script, container, or cloud function
- Extensible: Add custom rules and community addons
- Multiple Notification Channels: Support for logs, email, SMS, webhooks, and Teams
For detailed documentation, including:
- Complete setup guide
- Rule configuration
- Deployment options
- Best practices
Visit our Documentation
We welcome contributions! Please see our Contributing Guidelines for details.
- star The project: GitHub Stars
- fork The project: GitHub Forks
- Report bugs: GitHub Issues
- Request features: GitHub Discussions
- Join our community: Slack
This project is licensed under the Apache License - see the LICENSE file for details.
- Website: kexa.io
- Email: contact@kexa.io