Skip to main content

What is GuardKite

GuardKite is a security posture and risk management platform for AWS. It connects through a read-only IAM role, scans your resources daily, and surfaces what it finds in one place — with the context you need to decide what to fix and in what order.

The product is organized around four things you'll work with day to day:

  • Findings — specific configuration issues across your AWS resources: a public S3 bucket, an unencrypted volume, a security group open to the internet, an access key that hasn't been rotated. Each carries a severity, the affected resource, and remediation guidance.
  • IAM Risk — a view of the users and roles in your account focused on excessive permissions: identities with admin or wildcard access, services they can use but never have, identities idle for months, and escalation paths between identities.
  • Attack Paths — chains connecting something publicly reachable (API Gateway, function URL, load balancer, permissive security group, public bucket) to something sensitive (a secret, a database, a private bucket). Each path comes with the fix(es) that would break it, ranked by how many other paths the same fix would also close.
  • Events — a timeline of what changed and when, so you can watch your environment's security state evolve.

Scans run automatically once a day. Results appear in the platform as soon as a scan completes.

GuardKite is built for security and cloud teams who need a clearer picture of their AWS posture than the native tools give — and for the executives who need to know that picture is accurate and acted on.

Next steps