Discover cloud resources across AWS, GCP, Azure, and Oracle Cloud, then generate Terraform code to bring them under IaC management. Turn "ClickOps" into Infrastructure as Code.
Scan your cloud accounts for resources using the Discovery Wizard.
Group discovered resources into logical projects by environment, application, or team.
Create production-ready Terraform code using AI-assisted or direct generation.
Import generated code into an IaC project with state backend configuration and GitHub sync.
| Provider | Resources | Multi-Account Support |
|---|---|---|
| AWS | EC2, VPC, S3, RDS, Lambda, IAM, EKS, ALB, and more | Single account, Organization, or Selected accounts |
| GCP | Compute, VPC, Cloud Storage, Cloud SQL, GKE, IAM, and more | Project, Folder, or Organization scope |
| Azure | VMs, VNet, Blob Storage, SQL, AKS, NSG, and more | Subscription, Management Group, or Selected subscriptions |
| Oracle Cloud | Compute, VCN, Object Storage, Autonomous DB, OKE, and more | Compartment or Tenancy scope |
The Discovery Wizard guides you through the scanning process:
Choose AWS, GCP, Azure, or Oracle Cloud.
Select the cloud integration with credentials for scanning.
Set regions, accounts/projects/subscriptions, and resource types to scan.
Review the configuration and start the discovery session.
Discovery sessions track individual scan runs with full lifecycle management.
| Status | Description |
|---|---|
| Pending | Waiting to start |
| Scanning | Currently scanning cloud resources |
| Paused | Scan paused; can be resumed |
| Completed | Scan finished successfully |
| Failed | Encountered errors during scan |
| Action | Description |
|---|---|
| Open | View discovered resources |
| Pause | Pause an in-progress scan |
| Resume | Resume a paused scan |
| Re-scan | Run the scan again with the same configuration |
| Delete | Remove the session and its data |
The session overview page shows:
After discovering resources, generate Terraform code using one of two modes:
Uses AI to produce optimized Terraform code with:
Generate Terraform code without AI, with progress tracking from 10 to 100 percent:
| Output Mode | Description |
|---|---|
| Single file | All resources in one main.tf |
| Modular project | Organized into modules by resource type |
| Flat import | main.tf + variables.tf + outputs.tf for Terraform import |
Compare two discovery sessions to detect changes in your infrastructure over time.
Navigate to Discovery → Compare to:
View the history of a resource across discovery sessions at Discovery → Timeline:
ops0 enriches discovered resources with estimated monthly costs based on:
| Resource | Example Monthly Cost |
|---|---|
| EC2 t3.medium (us-east-1) | ~$30.37 |
| RDS db.t3.large (us-east-1) | ~$121.47 |
| NAT Gateway | ~$32.85 + data transfer |
| S3 Standard (1TB) | ~$23.00 |
Describe* and List* permissions| Feature | Description |
|---|---|
| Multi-Region Scanning | Scan resources across all regions simultaneously |
| Organization Scanning | Discover resources across AWS Organizations, GCP folders, Azure management groups, Oracle tenancies |
| Relationship Extraction | Automatically map dependencies between resources |
| Cost Estimation | Estimate monthly costs for discovered resources |
| Session Comparison | Compare sessions to detect infrastructure drift |
| AI Code Generation | Generate optimized Terraform with AI assistance |
| GitHub Sync | Push generated code directly to a GitHub repository |
| Pause & Resume | Pause long-running scans and resume later |
| Security Scanning | Automatic Nuclei vulnerability scan on scan completion — produces a risk grade (A–F) and per-resource findings |
| Resource Timeline | Per-resource history across all sessions — see every configuration change, cost shift, and deletion |
| Discovery Projects | Group resources into named projects with separate state backends before generating IaC |
Configure and run discovery scans across cloud providers.
Generate Terraform code and import into IaC projects.
Compare cloud state against Terraform expected state.
Track per-resource configuration history across all sessions.
Organise resources into projects before generating IaC.
Automatic vulnerability scanning with risk grades.