New Multi-cloud is here — full AWS + Azure assessments in one dashboard. Explore →
Powered by Amazon Bedrock AI

Secure, compliant cloud
on autopilot.

CloudLens AI assesses your AWS and Azure architecture against the Well-Architected Framework — running live security scans, mapping compliance, estimating cost, and generating fixes. In minutes, not weeks.

See how it works
🔒☁️
No credentials stored • Read-only access • Results in <5 min

Well-Architected Report

Live scan
87 Score
Security
Cost
Reliability
Performance
3 security groups open to 0.0.0.0/0
EBS volumes unencrypted in us-east-1
Right-size 4 idle EC2 instances → save $212/mo

Built on the cloud's most trusted security services

AWS Security Hub AWS Config Amazon Bedrock Azure Advisor Microsoft Defender AWS Trusted Advisor AWS Security Hub AWS Config Amazon Bedrock Azure Advisor Microsoft Defender AWS Trusted Advisor
150+
Automated checks
6
Compliance standards
5
Well-Architected pillars
2
Cloud providers
How it works

From cloud to clarity in three steps

Upload a diagram, describe your stack, or connect a live account — CloudLens does the rest.

🔗
1

Connect or upload

Link an AWS or Azure account with read-only access, upload an architecture diagram, or just describe your setup in plain text.

🧠
2

AI analyzes

Amazon Bedrock evaluates your architecture against all Well-Architected pillars, real findings, and compliance frameworks.

3

Get prioritized fixes

Receive a scored report with ranked recommendations, cost savings, and ready-to-apply IaC — exportable as PDF or JSON.

Platform

Everything you need to assess your cloud

One platform for security, compliance, cost, and architecture — across AWS and Azure.

🧠

AI-powered analysis

Amazon Bedrock reads your architecture the way a senior cloud architect would — identifying risks, gaps, and optimizations with context-aware reasoning.

  • Diagram, text, and live-account inputs
  • All 5 Well-Architected pillars
  • Prioritized, actionable recommendations
🛰️

Live cloud scanning

Real-time discovery across IAM, EC2, S3, Security Hub, Config, and Trusted Advisor — no agents to install.

💰

Cost estimation

Instant monthly cost from a diagram, with on-demand vs. reserved comparisons.

📋

Compliance mapping

HIPAA, PCI-DSS, SOC 2, GDPR, ISO 27001, and CIS — with gap analysis.

🏗️

IaC generation

Generate Terraform, CloudFormation, and draw.io diagrams from your design.

Live AWS & Azure scan

See your real risks, not guesses

Connect an account with least-privilege, read-only access and CloudLens discovers your live resources, then scores them against the Well-Architected Framework.

  • Security Hub, Config & Trusted Advisor findings
  • IAM, security groups, S3, EBS & encryption checks
  • Cross-account STS — credentials are never stored
IAM user without MFA — admin privileges
S3 bucket public — sensitive data exposed
No CloudTrail in 2 regions
Security group allows 0.0.0.0/0 on :22
Multi-AZ enabled on production RDS
AI cost intelligence

Know the bill before you build

Upload an architecture diagram and CloudLens estimates your monthly cost per service — with on-demand, 1-year, and 3-year reserved pricing so you can plan savings up front.

  • Per-service breakdown with pricing basis
  • On-demand vs. reserved savings comparison
  • Right-sizing opportunities flagged automatically
EC2 — 2× m5.large$140/mo
RDS — db.t3.medium$95/mo
S3 + CloudFront$38/mo
$273/mo
Save $112/mo with 1-yr reserved
On-demand
Compliance & governance

Audit-ready, continuously

Map your architecture to the frameworks that matter to your business and get a clear gap analysis with remediation steps.

  • Pre-built HIPAA, PCI-DSS, SOC 2, GDPR & ISO 27001
  • Control-by-control gap analysis
  • Export reports as PDF or JSON for auditors
HIPAA PCI-DSS SOC 2 GDPR ISO 27001 CIS Benchmarks AWS WAF Azure Advisor
Cloud providers

Multi-cloud from day one

Deep, native integrations with the platforms you actually run on.

Amazon Web Services

✓ Available now

Full integration with AWS Security Hub, Config, CloudTrail, and IAM for comprehensive assessment.

  • 150+ automated checks
  • 6 compliance standards
  • Real-time monitoring
  • CloudFormation templates

Microsoft Azure

✓ Available now

Full integration with Azure Advisor and Microsoft Defender for Cloud for security and optimization.

  • Azure Advisor recommendations
  • Well-Architected Framework
  • Multi-subscription support
  • Real-time scoring

Google Cloud Platform

Coming soon

Integration with Security Command Center and Cloud Asset Inventory for complete visibility.

  • Security Command Center
  • Compliance reports
  • Organization policies
  • Deployment Manager analysis
Pricing

Simple, credit-based pricing

Pay only for what you use. Credits never expire.

Starter
$1.50
10 credits
  • All Well-Architected pillars
  • Compliance framework analysis
  • Detailed recommendations
  • Export reports (PDF/JSON)
  • Multi-account support
Best value
$6.00
60 credits
  • Everything in Popular
  • Priority assessment queue
  • Multi-cloud dashboard
  • Executive summaries
  • Scheduled scans
Enterprise
$12.00
150 credits
  • Everything in Best Value
  • Highest credit volume
  • All providers & frameworks
  • Full export & API access
  • Dedicated support

💡 Credits never expire • 🔒 Secure payment via Dodo Payments • Refunds available

About CloudLens AI

Enterprise-grade cloud security, for everyone

CloudLens AI is built by security professionals for security professionals. We automate the complex work of cloud security assessment so teams of any size can identify vulnerabilities, maintain compliance, and optimize cost.

Every assessment uses temporary, least-privilege access — we never store your cloud credentials.

🎯 Our mission

Democratize cloud security by making enterprise-grade assessments accessible to organizations of all sizes.

🔬 Our technology

Powered by Amazon Bedrock AI for intelligent analysis and actionable recommendations grounded in cloud best practices.

🤝 Trust & security

We never store your credentials. All scans run with temporary, read-only, least-privilege access.

FAQ

Questions, answered

Never. CloudLens uses cross-account STS AssumeRole with a unique external ID and read-only, least-privilege permissions. Access is temporary and credentials are never persisted.

AWS and Microsoft Azure are fully supported today, including live scanning, compliance mapping, and Well-Architected scoring. Google Cloud Platform is coming soon.

You buy credits and spend them per assessment — quick scans cost less, deep and live scans cost more. Credits never expire, and new accounts start with free credits to try the platform.

Yes. Upload an architecture diagram or describe your stack in plain text and CloudLens will assess it — no live connection required. Connecting an account unlocks real-time scanning.

Every assessment can be exported as a PDF or JSON report, and IaC output (Terraform / CloudFormation) can be downloaded directly.

Ready to secure your cloud?

Start your free assessment today and find vulnerabilities before they become breaches.