Continuous AWS compliance & audit evidence.

Connect a read-only role and get your security posture against CIS, AWS FSBP, PCI-DSS, HIPAA, SOC 2, ISO 27001 and NIST — 117 automated checks across 56 services, with audit-ready reports and drift over time.

Run a free scanSee a live demo
No agents. Read-only access. Free 7-day scan trial, no card required.
117automated checks
56AWS services
11frameworks mapped
5 minto first report

From connect to evidence in three steps

CloudProof scans with read-only access — nothing is installed in your account and no data plane runs there.

Connect

Deploy a read-only IAM role with one CloudFormation template (or run our CLI for air-gapped accounts).

Scan

We evaluate 117 controls across your accounts and every region, mapped to the frameworks you care about.

Prove it

Share an audit-ready report (HTML/PDF/CSV/SARIF), track drift over time, and hand evidence to your auditor.

Deep AWS posture — not another noisy dashboard

Built for the platform/security engineer to adopt, and the CISO or compliance lead to sign off.

Framework-mapped

One technical check satisfies many controls — CIS 3.1 is also PCI 10.2.1 and NIST AU-2. Plus attestation for the policy/process controls scanners ignore.

Remediation that ships

Every finding comes with AWS CLI, Terraform, CDK and Pulumi fixes — with cost impact and a rollback path.

Drift & history

Timestamped, archivable reports. See what regressed, what got fixed, and your posture trend over time.

Org-wide

Audit a single account or an entire AWS Organization with cross-account role assumption.

Air-gapped option

Regulated or isolated? Run the same engine as a signed, offline-licensed binary on-prem — no SaaS access required.

EU-hosted

Run in the EU with data residency that helps your own GDPR story.

The frameworks your auditor asks for

Technical controls auto-checked; organizational controls captured via attestation with evidence links.

CIS AWS FoundationsAWS FSBPPCI-DSS HIPAASOC 2ISO 27001ISO 27017 NIST 800-53NIST CSFGDPRCCPA

Simple plans. Pick once, get back to work.

Start free for 7 days, then choose a plan. Most teams land on CloudProof Pro — full coverage at a price you can put on a card without a sign-off.

Free

$0
7-day trial
  • 1 AWS account
  • CIS + AWS FSBP
  • Unlimited scans for 7 days
  • HTML / JSON reports
  • Reports stay viewable
Start free

Single

$89 / mo
= $89 / account
  • 1 AWS account
  • All frameworks + attestation
  • Scheduled daily scans
  • PDF / CSV / SARIF export
  • 1-year history
Choose Single
★ Recommended · best value

Pro

$99 / mo
= just $9.90 / account
  • Up to 10 AWS accounts
  • Everything in Single
  • Drift & trend history
  • Email alerts & priority support
Start free trial

Enterprise

from $499 / mo
unlimited / org-wide
  • Unlimited accounts, continuous
  • Air-gapped licensed binary
  • SSO / SAML, custom frameworks
  • SLA, DPA / BAA, dedicated support
Contact sales

Just $10 more than Single gets you 10× the accounts — that's why most teams pick Pro. Billed monthly or annually (2 months free). Also available via AWS Marketplace — pay on your existing AWS bill.