Sold by: ARMOÂ
Deployed on AWS
ARMO platform is a runtime-powered, open-source-first Cloud Runtime Security Platform.
It continuously reduces your cloud attack surface using real-time runtime insights, while actively detecting and responding to threats with true risk context
It is the enterprise version of Kubescape, a leading Cloud security open-source project, (a CNCF sandbox project).
Overview
Image
ARMO CADR Code to Cloud
Video
ARMO CADR Demo video
Video
Product video
ARMO Platform is the first solution to provide a holistic runtime view of cloud threats, from the exact line of code being exploited to the cloud API where sensitive data resides. It connects high-level cloud activity with suspicious application behaviors, offering deep visibility into compromised functions and APIs. It builds a complete, explainable, and traceable attack story across the entire cloud stack, enabling rapid, informed responses without overwhelming your team with noise. With automated, context-aware response and visibility throughout the cloud technology stack, ARMO helps security teams detect, investigate, and stop threats in real time without disrupting operations. ARMO open source project, Kubescape, is the fastest growing CNCF security tool, used by over 25,000 companies in over 100,000 cloud environments worldwide.
Highlights
- Comprehensive view of active threats, from the exploited line of the application code to the cloud API where data resides
- Eliminate the security noise in your clusters from thousands of alerts to high-priority threat vectors
- Remediate security issues without breaking applications
Details
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/month |
|---|---|---|
SaaS offering: price per worker node | The price is per worker node per month (monthly or annual contract) | $49.00 |
Vendor refund policy
No refund
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
ARMO guarantees 99.99% uptime across two delivery regions and provides support with a response time of 8 hours (Sunday - Friday, 9:00am -5:00pm). You will be assigned a technical account manager and a secondary point of contact, and will have access to them through in-product chat and email.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Runtime Security Analysis
Provides comprehensive runtime security insights across cloud environments with real-time threat detection capabilities
Cloud Attack Surface Reduction
Continuously monitors and reduces potential security vulnerabilities using runtime insights and threat context
Threat Detection Mechanism
Connects high-level cloud activity with suspicious application behaviors to identify potential security compromises
Multi-Layer Security Visibility
Offers deep visibility across entire cloud technology stack from application code to cloud API interactions
Open-Source Security Tooling
Leverages open-source Kubescape project for advanced cloud security monitoring and threat investigation
Infrastructure Discovery
Automated asset inventory and discovery across multi-cloud, Kubernetes, and on-premise environments
Security Policy Management
Comprehensive security-as-code engine with 250 pre-configured policies for assessing security and compliance states
Compliance Framework Support
Automatic evidence collection for multiple compliance standards including SOC2, ISO 27001, HIPAA, PCI-DSS, and TISAX
Vulnerability Detection
Persistent vulnerability and misconfiguration identification across infrastructure layers including cloud, containers, operating systems, and virtualization platforms
DevOps Security Integration
Native integration with existing DevOps workflows to implement security and compliance requirements during development cycles
Cloud Security Coverage
Comprehensive security monitoring across 40+ AWS services including compute, containers, storage, databases, networking, and security services
Threat Detection Mechanism
Anomaly and behavior-based detection with advanced threat identification using osquery-based agent with eBPF technology
Infrastructure as Code Security
Identify, prioritize, and fix misconfigurations and policy violations in Infrastructure as Code (IaC) environments
Identity and Access Management
Comprehensive visibility and management of IAM policies, users, roles with Identity Threat Detection and Response (ITDR) capabilities
Compliance and Monitoring
Support for multiple compliance standards including CIS benchmarks, HIPAA, ISO 27001, NIST, PCI, and SOC 2 with continuous security telemetry monitoring
Validated by AWS Marketplace
FedRAMP
GDPR
HIPAA
ISO/IEC 27001
PCI DSS
SOC 2 Type 2
No security profile
No security profile
-
-
-
-
-
Standard contract
No
No
Customer reviews
0 ratings
0 AWS reviews
|
43 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Information Technology and Services
My review
Reviewed on Jun 09, 2025
Review provided by G2
What do you like best about the product?
Versatile, user-friendly and has multiple functions that are beneficial for work related to my field.
What do you dislike about the product?
The cost, some minor glitches with the system
What problems is the product solving and how is that benefiting you?
It is good for helping to uncover different vulnerabilities in scans
Abhineet S.
Streamlined Kubernetes Security with Actionable Remediations
Reviewed on May 16, 2025
Review provided by G2
What do you like best about the product?
I recently integrated ArmoSec with one of our staging Kubernetes clusters using their SaaS-based portal. The onboarding was very smooth — I was able to connect the cluster and start getting real-time security insights within 20–30 minutes. What stood out the most was the RBAC misconfiguration detection, which gave us a clear view of over-permissioned service accounts.
The attack path visualization helped us understand potential lateral movement risks. The UI is intuitive, and their remediation suggestions are practical — they don’t just show you what’s wrong, but guide you to fix it step-by-step. For someone working in DevSecOps, this is a really handy dashboard.
The attack path visualization helped us understand potential lateral movement risks. The UI is intuitive, and their remediation suggestions are practical — they don’t just show you what’s wrong, but guide you to fix it step-by-step. For someone working in DevSecOps, this is a really handy dashboard.
What do you dislike about the product?
One area that could be improved is the alerting system — I’d love to see more customizable alerts or Slack integration to monitor specific risk thresholds. Also, the scan reports are comprehensive but export options (PDF, CSV) felt a bit limited during our testing phase. It’s not a blocker, but something that could enhance usability.
What problems is the product solving and how is that benefiting you?
One of the biggest benefits is that it provides clear remediation steps, which saves time and helps even developers with limited security experience understand how to fix issues. The visual representation of attack paths and role bindings also improves team collaboration when assessing cluster risks. Overall, ARMO helps us shift security left without adding too much overhead.
Kogileru H.
review of kubescape
Reviewed on Apr 23, 2025
Review provided by G2
What do you like best about the product?
It is very good at finding the kubernetes related issues and best remediation solution and user interface
What do you dislike about the product?
Nothing to dislike --except one report generation thing
What problems is the product solving and how is that benefiting you?
to maintain the healthy Container setup
Insurance
Great Cloud Security Platform
Reviewed on Apr 22, 2025
Review provided by G2
What do you like best about the product?
Runtime real time security + correlation to vulnerabilities and missconfigs, its easy to deploy and based on open source kubescape
What do you dislike about the product?
integrations are not up to the standards but its a work in progress
What problems is the product solving and how is that benefiting you?
is solving some compliance checks as well as making us more confortable and safe in terms of deployments and missconfigs
Rafael Leonardo d.
Great but need some deep knowledge to fist setup
Reviewed on Mar 26, 2025
Review provided by G2
What do you like best about the product?
Use less resource to scans if compare with another solutions on the market.
What do you dislike about the product?
It's hard to troubleshooting setup issues.
What problems is the product solving and how is that benefiting you?
Allow security team to keep their eyes on every workload running on our environment.