Tools

ScoutSuite

prowler

CIS Benchmarks - Manual Review after downloading latest documents

trivy - scan docker misconfigurations, filesystem & firmware for cves (SCA - Static Component Analysis tool)

cve-bin-tool - scan filesystem/directories, firmware for cves