ops0ops0
App

Discovery

Discover cloud resources across AWS, GCP, Azure, and Oracle Cloud, then generate Terraform code to bring them under IaC management. Turn "ClickOps" into Infrastructure as Code.

ops0 Discovery overview showing discovered cloud resources

How It Works

Discover

Scan your cloud accounts for resources using the Discovery Wizard.

Organize

Group discovered resources into logical projects by environment, application, or team.

Generate

Create production-ready Terraform code using AI-assisted or direct generation.

Import

Import generated code into an IaC project with state backend configuration and GitHub sync.

Platform Coverage

4
Cloud Providers
200+
Resource Types

Cloud Providers

ProviderResourcesMulti-Account Support
AWSEC2, VPC, S3, RDS, Lambda, IAM, EKS, ALB, and moreSingle account, Organization, or Selected accounts
GCPCompute, VPC, Cloud Storage, Cloud SQL, GKE, IAM, and moreProject, Folder, or Organization scope
AzureVMs, VNet, Blob Storage, SQL, AKS, NSG, and moreSubscription, Management Group, or Selected subscriptions
Oracle CloudCompute, VCN, Object Storage, Autonomous DB, OKE, and moreCompartment or Tenancy scope

Discovery Wizard

The Discovery Wizard guides you through the scanning process:

Select Provider

Choose AWS, GCP, Azure, or Oracle Cloud.

Choose Integration

Select the cloud integration with credentials for scanning.

Configure Scope

Set regions, accounts/projects/subscriptions, and resource types to scan.

Review and Start

Review the configuration and start the discovery session.

Session Management

Discovery sessions track individual scan runs with full lifecycle management.

Session Statuses

StatusDescription
PendingWaiting to start
ScanningCurrently scanning cloud resources
PausedScan paused; can be resumed
CompletedScan finished successfully
FailedEncountered errors during scan

Session Actions

ActionDescription
OpenView discovered resources
PausePause an in-progress scan
ResumeResume a paused scan
Re-scanRun the scan again with the same configuration
DeleteRemove the session and its data

Session Overview

The session overview page shows:

  • Total resources discovered by type and region
  • Resource list with metadata, tags, and estimated costs
  • Relationship graph between resources
  • Session configuration details

IaC Code Generation

After discovering resources, generate Terraform code using one of two modes:

AI-Assisted Generation

Uses AI to produce optimized Terraform code with:

  • Real-time security scanning during generation
  • Event streaming for progress tracking
  • Intelligent module grouping and variable extraction
  • Best-practice patterns applied automatically

Direct Generation

Generate Terraform code without AI, with progress tracking from 10 to 100 percent:

Output ModeDescription
Single fileAll resources in one main.tf
Modular projectOrganized into modules by resource type
Flat importmain.tf + variables.tf + outputs.tf for Terraform import

Session Comparison

Compare two discovery sessions to detect changes in your infrastructure over time.

Navigate to Discovery → Compare to:

  • Select two sessions to compare (before/after)
  • View added, removed, and modified resources
  • See a diff summary of infrastructure changes
  • Track drift between scan runs

Resource Timeline

View the history of a resource across discovery sessions at Discovery → Timeline:

  • When a resource was first discovered
  • Configuration changes over time
  • Cost changes between scans
  • Relationship changes

Cost Estimation

ops0 enriches discovered resources with estimated monthly costs based on:

  • Resource type and size
  • Region-specific pricing
  • Current usage patterns (when available)
ResourceExample Monthly Cost
EC2 t3.medium (us-east-1)~$30.37
RDS db.t3.large (us-east-1)~$121.47
NAT Gateway~$32.85 + data transfer
S3 Standard (1TB)~$23.00

Supported Resources

Compute
EC2, VMs, Compute Engine, Lambda, Functions
Networking
VPC, VNet, Subnets, Security Groups, NSG, Firewalls
Storage & Database
S3, Blob Storage, Cloud Storage, RDS, Cloud SQL, Cosmos DB
Containers
EKS, AKS, GKE, OKE, ECS, Container Apps, Cloud Run
Security & IAM
IAM Roles, Service Accounts, Key Vault, KMS, Secrets Manager
Load Balancing & CDN
ALB, NLB, App Gateway, CloudFront, Front Door, Cloud CDN

View complete resource support matrix →

Prerequisites

Before You Start
Cloud Integration configured in Settings → Integrations
AWS: IAM Role with Describe* and List* permissions
GCP: Service Account with Viewer role
Azure: Service Principal with Reader role
Oracle Cloud: API key with compartment-level read access

Key Features

FeatureDescription
Multi-Region ScanningScan resources across all regions simultaneously
Organization ScanningDiscover resources across AWS Organizations, GCP folders, Azure management groups, Oracle tenancies
Relationship ExtractionAutomatically map dependencies between resources
Cost EstimationEstimate monthly costs for discovered resources
Session ComparisonCompare sessions to detect infrastructure drift
AI Code GenerationGenerate optimized Terraform with AI assistance
GitHub SyncPush generated code directly to a GitHub repository
Pause & ResumePause long-running scans and resume later

Scanning Resources

Configure and run discovery scans across cloud providers.

Importing Resources

Generate Terraform code and import into IaC projects.

Drift Detection

Compare cloud state against Terraform expected state.

PreviousAdvanced
NextScanning Resources