Show HN: AWSight: flat-rate AWS security checks mapped to CIS/NIST

1•kevincloudsec•1h ago

I spent 15 years in cybersecurity and kept seeing small teams struggle with the cost and maintenance of AWS security tooling. If you turn on AWS Security Hub and AWS Config to track CIS benchmarks or SOC 2 controls, the per-rule and per-resource pricing adds up quickly as accounts grow.

I built AWSight as a simpler option. It runs a few hundred security checks against your AWS accounts daily and maps findings to CIS, NIST, and PCI DSS controls. It connects through a read-only cross-account IAM role and never writes to your environment.

Results show up in Grafana dashboards with remediation steps for each finding. I chose Grafana because most engineers already know how to use it.

If you already run Prowler yourself, AWSight is basically that idea but managed: scheduled scans, historical tracking, and compliance mapping without running the infrastructure.

Pricing is flat-rate starting at $249/month per account, regardless of resource count.

Demo dashboards with sample data (no signup): https://awsight.com/demo.html

(Grafana panels can take a few moments to load on first visit.)

I'm a solo founder building this. Happy to talk architecture, specific checks, or why AWS Config billing is so difficult to predict.

https://awsight.com

Comments

kevincloudsec•1h ago

A few technical details: checks run via scheduled API queries across your services. No agents or collectors run in your account. The cross-account role is scoped to read/list calls only. Findings are stored historically so you can see when issues appeared and when they were resolved.

allanmacgregor•1h ago

I think you might have made a mistake on the post? Is not linking you to the actual site or product

kevincloudsec•1h ago

Thanks for the heads up. The links are in the text body. Demo dashboards here: https://awsight.com/demo.html and main site: https://awsight.com. I posted as a text submission so I could include context.

Show HN: I built a short-form content intelligence tool for media buyers

Generative 'AI' Pollutes Search Results

ACM A.M. Turing Award Honors Charles H. Bennett and Gilles Brassard

Vite+ Alpha is kinda underwhelming

Show HN: Pts.py – Visual Thinking in Code

A Quantum Leap for the Turing Award

FlexLab Studio – in-person assisted stretching sessions booked online

Anthropic Captures 73% of New Enterprise AI Spending, Outpacing OpenAI

Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild

Kireifilter Coming Soon

Show HN: Bento – Save and restore multi-monitor app layouts

Show HN: Balsamiq Wireframes MCP

AI executions create billion-dollar valuations–just not yours

Can You Hear the Music?

Show HN: Ranvier – Prefix-aware routing for LLM inference

Detecting When Your AI Agent Dies

Why Agent UIs Lose Messages on Refresh

Cursor trained Composer to self-summarize through RL instead of a prompt

Scientific American and Friday the 13th

Anthropic turns the tables on OpenAI in critical revenue category

Stripe-backed startup Tempo releases the Machine Payments Protocol

Bare-Metal AArch64 Networking Stack on Pi 3

The Unintended Winners and Losers of the War in Iran

Coding After Coders: The End of Computer Programming as We Know It

Project Itohs Harmony and the under explored extremes of alignment theory

Upgrading in Site or Relocation? Impacts of Slum Renewal Policies

Running 9 AI agents and realizing we needed a control plane

Why Private School Isn't Worth the Cost

Federal Cyber Experts Called Microsoft's Cloud "A Pile of Shit", yet Approved It

Product has always been the bottleneck, it's just clearer now