Show HN: AWSight: flat-rate AWS security checks mapped to CIS/NIST

1 points by _slih 61 days ago | 3 comments

I spent 15 years in cybersecurity and kept seeing small teams struggle with the cost and maintenance of AWS security tooling. If you turn on AWS Security Hub and AWS Config to track CIS benchmarks or SOC 2 controls, the per-rule and per-resource pricing adds up quickly as accounts grow.

I built AWSight as a simpler option. It runs a few hundred security checks against your AWS accounts daily and maps findings to CIS, NIST, and PCI DSS controls. It connects through a read-only cross-account IAM role and never writes to your environment.

Results show up in Grafana dashboards with remediation steps for each finding. I chose Grafana because most engineers already know how to use it.

If you already run Prowler yourself, AWSight is basically that idea but managed: scheduled scans, historical tracking, and compliance mapping without running the infrastructure.

Pricing is flat-rate starting at $249/month per account, regardless of resource count.

Demo dashboards with sample data (no signup): https://awsight.com/demo.html

(Grafana panels can take a few moments to load on first visit.)

I'm a solo founder building this. Happy to talk architecture, specific checks, or why AWS Config billing is so difficult to predict.

https://awsight.com

_slih 61 days ago |

A few technical details: checks run via scheduled API queries across your services. No agents or collectors run in your account. The cross-account role is scoped to read/list calls only. Findings are stored historically so you can see when issues appeared and when they were resolved.

allanmacgregor 61 days ago | |

I think you might have made a mistake on the post? Is not linking you to the actual site or product

_slih 61 days ago | | |

Thanks for the heads up. The links are in the text body. Demo dashboards here: https://awsight.com/demo.html and main site: https://awsight.com. I posted as a text submission so I could include context.