Made in Australia ๐Ÿ‡ฆ๐Ÿ‡บ

Find cloud security risks before attackers do.

GoNinja is a read-only, multi-cloud posture scanner. Connect in two minutes, get prioritized findings mapped to CIS, SOC 2 and PCI-DSS, and board-ready reports โ€” with daily monitoring and alerts when something new appears.

Start free โ€” 7 days See how it works
No credit card ยท Read-only access ยท Data stays in AWS Sydney
CIS Benchmark SOC 2 PCI-DSS Multi-cloud

Everything you need to prove your cloud is secure

Built for teams who want clear answers, not another dashboard to babysit.

๐Ÿ”Ž

Multi-region scanning

Checks IAM, S3, EC2, RDS, CloudTrail and GuardDuty across every enabled region โ€” read-only, no agents.

๐Ÿ“Š

Posture score & grade

A clear 0โ€“100 score and letter grade, with findings ranked by severity and step-by-step remediation.

๐Ÿ“‹

Compliance mappings

Every finding is cross-referenced to CIS AWS Foundations, SOC 2 criteria and PCI-DSS v4.0 to support your audits.

๐Ÿ“ก

Continuous monitoring

Automated daily scans at a time you choose, with an email alert the moment a new risk appears.

๐Ÿ“ˆ

Trends & change tracking

Watch your posture improve over time and see exactly what changed since the last scan.

๐Ÿงพ

Board-ready reports

One-click HTML / PDF reports with an executive summary and compliance coverage โ€” ready for leadership.

Connected in two minutes

No software to install. No write access. You stay in control.

1

Sign in

Create a free account โ€” no credit card. Your 7-day trial starts instantly.

2

Deploy the read-only role

Download a one-click CloudFormation template, pre-filled with your unique ID, and create the read-only role in your AWS account.

3

Scan & monitor

Run a full scan, review prioritized findings and reports, and switch on daily monitoring.

Security & data residency

GoNinja is built to be the safest thing you connect to your cloud.

โœ“Read-only, always. GoNinja uses a cross-account IAM role with AWS's managed SecurityAudit policy. It can never modify, create or delete anything in your account.
โœ“We never see your credentials. No access keys, secrets or passwords are ever sent to or stored by GoNinja. Access is via a role you create, bound to your account with a private external ID.
โœ“Your data stays in Australia. All processing and storage runs in the AWS Asia Pacific (Sydney) region โ€” ap-southeast-2.
โœ“Revoke anytime. Delete the CloudFormation stack and GoNinja's access is removed immediately and permanently.
โœ“Secure sign-in. Authentication via Amazon Cognito with optional two-factor authentication.

Read our full Privacy & Data Policy โ†’

Simple, honest pricing

Start free. Upgrade when you're ready. Cancel anytime.

$9.95 / user / month
  • Unlimited scans across all regions
  • Continuous monitoring & drift alerts
  • CIS / SOC 2 / PCI-DSS mapped findings
  • Board-ready reports & posture trends
  • Email support
Start your 7-day free trial

No credit card required to start.

See your cloud's security posture today

Two-minute setup. Read-only. Free for 7 days.

Open GoNinja How it works