Connect your cloud.
Under 5 minutes.
Read-only credentials. Nothing to install. No infrastructure to change. Obok connects to your cloud accounts through native APIs and starts scanning immediately.
Read-only. We never write or delete anything in your cloud.
Every major cloud, one connection.
Connect as many accounts, subscriptions or projects as you need. Each one gets full security, cost and compliance coverage immediately.
AWS Security Hub
Obok is an AWS Advanced Technology Partner. All security findings are published in AWS Security Finding Format (ASFF) directly to your AWS Security Hub. No extra setup, no additional tools.
View AWS partner profile Amazon Web Services
IAM Role · Read-only- EC2, ECS, EKS, Lambda
- S3, RDS, DynamoDB, Redshift
- IAM, CloudTrail, Config, GuardDuty
- VPC, Route 53, CloudFront, ELB
- SageMaker, Bedrock (AI-SPM)
- Multi-account and AWS Organizations
Microsoft Azure
Service Principal · Read-only- Virtual Machines, AKS, Functions
- Storage Accounts, SQL, Cosmos DB
- Azure AD, Key Vault, Security Center
- VNet, Application Gateway, Firewall
- Azure OpenAI, Azure ML (AI-SPM)
- Multi-subscription and Management Groups
Google Cloud Platform
Service Account · Read-only- Compute Engine, GKE, Cloud Run
- Cloud Storage, Cloud SQL, BigQuery
- IAM, Cloud Audit Logs, Security Command Center
- VPC, Cloud Armor, Load Balancing
- Vertex AI, Gemini API (AI-SPM)
- Multi-project and Organization level
Oracle Cloud
API Key · Read-only- Compute instances and Kubernetes
- Object Storage and Autonomous DB
- IAM policies and compartments
- Virtual Cloud Networks and Gateways
- Audit logs and Cloud Guard
- Multi-tenancy and compartment hierarchy
Connect Obok to the tools your team already uses.
All findings, scores and cost data are accessible through the Obok API. Pull data into your own dashboards, create tickets or feed findings into your existing workflows.
Webhooks
Get notified the moment a new finding is detected or a compliance score drops. Send real-time alerts to Slack, Teams, PagerDuty or any HTTP endpoint your team uses.
finding.createdfinding.resolvedscore.changedspend.anomaly
REST API
Programmatic access to all your findings, compliance scores, cost opportunities and inventory data. Create tickets in Jira, post to Slack, or feed data into your SIEM.
Export
Download findings, compliance reports and cost summaries in CSV or JSON. Schedule automated exports to share with leadership or feed into your reporting stack.
findings.csvcompliance-report.pdfcost-summary.jsoninventory.csv
Need a native integration with a specific tool? Talk to us. We build integrations based on what customers actually need.
What Obok can and cannot see.
We connect through native cloud APIs using the minimum permissions needed to do the job. Nothing more.
What Obok reads
- Resource configurations and metadata
- IAM policies, roles and permissions
- Network topology and security group rules
- Billing and usage data for cost analysis
- Audit log metadata (not log content)
- Compliance control statuses
What Obok never touches
- Your application code or data
- Contents of S3 buckets or databases
- Private network traffic or packets
- Secrets, API keys or credentials stored in services
- Instance memory, disks or running processes
- Any write, modify or delete operation
Your first account takes under 5 minutes.
Read-only credentials, agentless, no infrastructure changes. Connect once and get security, cost and compliance coverage immediately.