Free & open-source cloud operations platform.
FinOps, Security, Threat Intelligence & SOAR — all in one dashboard.
Built with AI. Self-hosted. No vendor lock-in.
Website • Live Demo • Docs • Contact
CloudDory replaces 5+ cloud tools with one unified, self-hosted platform:
| Module | What It Does |
|---|---|
| FinOps | Cost explorer, waste scanner, anomaly detection, AiTags virtual tagging, shared cost allocation, savings forecasting |
| Security | CVE tracking from NVD + CISA KEV, security posture (CSPM), compliance monitoring, vulnerability management |
| Threat Intelligence | IOC management, threat feeds, adversary profiles, intel reports |
| Automation (SOAR) | Automated playbooks, workflow integrations, incident response |
| DoryAI | AI assistant powered by Gemini, OpenAI, or Anthropic — page-aware, answers questions about your cloud data |
Built with Next.js 14, TypeScript, Tailwind CSS, Prisma, and MariaDB.
See CloudDory in action at dashboard.clouddory.com and clouddory.com.
Cost Explorer
- 5 chart types (bar, stacked bar, line, area, stacked area)
- Multi-dimension grouping (service, provider, team, region)
- Filter chips, date range picker, CSV export
- Drill down to individual cost line items with plain-English explanations
CVE Tracking
- 65+ CVEs synced from NVD and CISA KEV
- Severity scoring, CVSS, exploit/patch availability
- Per-org tracking (status, assignee, notes)
- Affected resource matching against your cloud inventory
DoryAI Assistant
- Page-aware: knows which page you're on
- Answers questions about your costs, security posture, CVEs
- Powered by Gemini/OpenAI/Anthropic (bring your own keys)
- Available as floating widget on every page
curl -fsSL https://clouddory.com/install.sh | bashDetects your environment, installs dependencies, sets up the database, and starts CloudDory. Works on macOS and Linux.
git clone https://github.com/ALANDVO/clouddory.git
cd clouddory
docker-compose up -d# Prerequisites: Node.js 18+, MySQL/MariaDB
git clone https://github.com/ALANDVO/clouddory.git
cd clouddory/apps/dashboard
npm install
cp ../../.env.example .env # Edit with your DB URL
npx prisma db push
npm run build && npm startOpen http://localhost:3000 — first user to register becomes admin.
Go to Settings > AI Config to add your API keys via the UI:
- Google Gemini (recommended — free tier available)
- OpenAI (GPT-4o, GPT-4)
- Anthropic (Claude 3.5 Sonnet, Claude 3 Haiku)
- OpenRouter (access to 100+ models)
Keys are encrypted at rest with AES-256-CBC.
Settings > Cloud Accounts > Connect
| Provider | Method |
|---|---|
| AWS | CloudFormation template (1-click IAM role setup) + CUR |
| GCP | Service account with Billing Viewer role |
| Azure | App registration with Cost Management Reader role |
Read-only access only. CloudDory never writes to your cloud accounts.
clouddory/
├── apps/
│ ├── dashboard/ # Main application (Next.js 14, SSR)
│ ├── admin/ # Admin panel (Next.js 14)
│ └── landing/ # Marketing site (Next.js 14, static export)
├── prisma/ # Database schema + seeds
├── docker-compose.yml # One-command deployment
├── .env.example # Environment template
└── README.md
| Layer | Technology |
|---|---|
| Frontend | Next.js 14, TypeScript, Tailwind CSS, Recharts, Framer Motion |
| Backend | Next.js API Routes, Prisma ORM |
| Database | MySQL / MariaDB |
| Auth | NextAuth.js (email/password + Google OAuth) |
| AI | Gemini, OpenAI, Anthropic (via API) |
| CVE Data | NVD API v2.0, CISA KEV catalog |
- CloudLens Cost Explorer with 5 chart types
- AWS integration (CloudFormation + STS + Cost Explorer API)
- Waste Scanner (idle resources, rightsizing, orphaned storage)
- Anomaly detection with configurable thresholds
- AiTags virtual tagging engine
- Shared cost allocation (telemetry or custom %)
- Commitment tracker (RIs, Savings Plans, CUDs)
- Resource inventory with drill-down to line items
- Savings forecasting, manual entry, CSV export
- CVE tracking synced from NVD + CISA KEV
- CVE detail pages with remediation steps (stays in-app)
- Affected resource matching (agentless)
- Security posture scoring
- Per-org status tracking (new > reviewing > mitigated)
- CISA KEV "actively exploited" flagging
- DoryAI chat assistant (page-aware, real data context)
- 20+ connector integrations (AWS, GCP, Azure, Datadog, Snowflake, K8s, OpenAI, Anthropic)
- Custom dashboards with drag-and-drop widgets
- Query builder for ad-hoc reports
- Spend planning with budget vs actual
- Team showback (shareable public links)
- Blog CMS (write in admin, publish to site)
- Feedback system (bug reports, feature requests)
- Notification system with bell dropdown
- API key management, SSO config, IP whitelist
- All data stays in your database
- No telemetry, no phone-home, no usage tracking
- Bring your own AI keys — we never see them
- Read-only cloud access — we never write to your infrastructure
- AES-256-CBC encryption for stored credentials
PRs welcome! See CONTRIBUTING.md for guidelines.
- Fork the repo
- Create your feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'Add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
Alan Vo — AI Engineer & Infrastructure Architect
- Email: alanvo@gmail.com
- GitHub: @ALANDVO
- Website: clouddory.com
Alan is an AI engineer and automation specialist focused on building intelligent cloud platforms. CloudDory was built to prove that enterprise-grade cloud operations tools don't need enterprise-grade budgets.
Interested in AI engineering, cloud architecture, or want to collaborate? Reach out at alanvo@gmail.com.
- Email: alanvo@gmail.com
- Issues: github.com/ALANDVO/clouddory/issues
- Demo: dashboard.clouddory.com
- Docs: clouddory.com/resources/docs
MIT — free to use, modify, and distribute.
Built by Alan Vo • clouddory.com • Star on GitHub
When a new version is released, update your installation with one command:
cd ~/clouddory
bash upgrade.shThe upgrade script will:
- Back up your database before touching anything
- Pull the latest code from GitHub
- Install new dependencies
- Apply database schema changes (non-destructive — your data is safe)
- Rebuild and restart the app
If anything goes wrong, rollback instructions are shown at the end.
cd ~/clouddory
git pull origin main
cd apps/dashboard
npm install
npx prisma db push
npm run build
# Restart your process (pm2 restart, systemctl restart, etc.)