Introducing the Mondoo Compliance Hub
Project Health
Project Creators
The same group of industry experts created both Mondoo and InSpec.
Soo Choi, Christoph Hartmann, Patrick Münch, Dominik Richter
Dominik Richter, Christoph Hartmann
Releases in 2023
Continuous releases are required to stay prepared for cyber attacks.
40+ releases
2 releases
Cloud Security
AWS
CSPM coverage for Amazon Web Services (AWS), incident response, EC2 Instance Connect, AWS Organization integration, maintained CIS benchmarks.
Partial Support
GCP
CSPM coverage for Google Cloud Platform (GCP), support for Google Container-Optimized OS (GCOS), maintained CIS benchmarks.
Partial Support
Azure
CSPM coverage for Azure and Azure AD, Windows, and Linux workloads, maintained CIS benchmarks.
Partial Support
OCI
CSPM coverage for Oracle Cloud Infrastructure (OCI).
Edge Computing Security
VMware vCenter and ESXi
Scan VMware vCenter and ESXi for vulnerabilities and misconfigurations.
VMware Cloud Director
Asset inventory for VMware Cloud Director (VCD).
Kubernetes Security
Nodes
Vulnerability management and compliance for Kubernetes nodes.
Partial Support
AKS
Cluster and workload scanning for Azure Kubernetes Service (AKS).
EKS
Cluster and workload scanning for Amazon Elastic Kubernetes Service (EKS).
GKE
Cluster and workload scanning for Google Kubernetes Engine (GKE).
OpenShift
Cluster and workload scanning for Red Hat OpenShift.
Workload Protection
Vulnerability Management
Comprehensive vulnerability detection for VMs, containers, and bare-metal systems.
Misconfiguration
Access to benchmarks for Red Hat, Ubuntu, Debian, Windows
Agent-based Scanning
Install the client on Linux, Windows, or macOS systems.
Agentless Scanning
Scan VMs agentless via VM snapshots, Amazon SSM, or EC2 Instance Connect.
Container Scanning
Scan static container images and registries for vulnerabilities and misconfiguration.
IaC Scanning
Scan your Kubernetes Manifests, Terraform HCL, Terraform plan, or Terraform state files for misconfigurations.
HashiCorp Packer Plugin
Verified plugin by HashiCorp to scan VM images (e.g., AMI) for security issues before deployment.
SaaS Security
Okta
Ensure your identity solution follows the most secure practices.
Microsoft 365
Asset inventory, security, and compliance, including a CIS benchmark for Microsoft 365.
Google Workspace
Scan Google Workspace for misconfiguration.
Slack
Secure your team communications against security misconfigurations.
Build
Data Access
Access your data via Snowflake, BigQuery, S3, and PostgreSQL exports.
CI/CD Integrations
Integrate security scanning in your GitHub Actions, GitLab Pipelines or Azure DevOps.
Ansible Integration
Leverage your existing Ansible inventory to assess your infrastructure quickly.
Don't miss out on improved security and compliance! See how Mondoo helps revolutionize your IT infrastructure security.
Smooth Migration
Our team of experts will guide you through a seamless migration process from InSpec to Mondoo, ensuring that your transition is smooth and hassle-free.
Superior Features
Mondoo offers advanced features that surpass InSpec in terms of functionality, flexibility, and automation capabilities. You'll gain access to a robust set of tools that will empower your IT security and compliance efforts.
Trusted by Industry Leaders
Mondoo is trusted by top companies in various industries, including finance, healthcare, technology, and more.
Trusted by leading companies and security experts worldwide, Mondoo is the security solution that will meet and exceed your expectations.
Monitor your entire infrastructure and easily identify any stranded workloads or configurations that put your business at risk.
Ready to experience the Mondoo difference? Don't miss out on improved security and compliance for your IT infrastructure. Book a demo with our expert team now and see how Mondoo can revolutionize your security practices. Click below to schedule your demo today!