Open-source AWS security scanner with Attack Chains, Breach Cost Estimation, and MCP Server. 47 checks across 15 AWS services. Every finding includes copy-paste remediation (CLI + Terraform) and a dollar-risk estimate with verified source. First free standalone AWS security MCP server - Prowler and Wiz require paid SaaS.
Tools
scan_aws
get_findings
get_attack_chains
get_remediation
get_health_score
list_checks
Server Config
{
"mcpServers": {
"cloud-audit": {
"command": "uvx",
"args": [
"--from",
"cloud-audit",
"cloud-audit-mcp"
]
}
}
}