GrandLine Request a demo →
Multi-cloud visibility · AWS · Azure · GCP

See every cloud resource. Every relationship. Every risk. Every dollar.

GrandLine Architecture Intelligence automatically discovers your cloud estate, generates publication-quality architecture diagrams, surfaces security findings in context, and keeps your cloud spend honest. across AWS, Azure, and GCP.

View live demo → Contact sales
AWS Microsoft Azure Google Cloud Agentless Read-only SOC 2 aligned

What the platform can do

Three pillars, one product. Every feature is grounded in the resources it discovers. no spreadsheets, no stale diagrams, no blind spots.

A

Automatic Architecture Discovery

Map every VPC, VNet, project, subnet, workload, database, and dependency. Diagrams are generated automatically from live APIs and stay current on every scan.

S

Security Scanning & Risk Visualization

Public exposure, encryption gaps, over-permissive IAM, risky SG/NSG rules. Every finding is anchored to the resource. and highlighted on the diagram.

C

Cost Optimization & FinOps

Trend detection, anomaly flagging, rightsizing and idle-resource recommendations. Filter by account, service, tag, or environment. and see cost in context.

Why GrandLine

Most tools give you inventory. Some give you findings. We give you architecture. the thing your team actually needs to reason about the estate.

Architecture-first, not list-first

The primary surface is the diagram, not a table. Findings, cost, and access all drape over the topology so the story is always contextual.

Agentless & read-only

Cross-account roles (AWS), Microsoft Entra ID Workload Identity Federation (Azure), Workload Identity Federation (GCP). No writes. No agents. Data stays in your boundary for Self-Hosted.

Presentation-grade diagrams

ELK layered layout with crossing minimization. PNG at 300 DPI and SVG. Icons are the official AWS, Azure, and GCP sets. Diagrams you can put in a board deck.

Three clouds, one pane

Unified resource graph across AWS, Azure, and GCP. Search, group, drill down, and export consistently.

Tenant isolation you can audit

Per-tenant AWS KMS customer managed keys, Postgres RLS, MFA by default, Enterprise SSO & WebAuthn, S3 Object Lock audit.

Commercial clarity

One perpetual licence, one price. Unlimited resources, accounts, and users. No seat explosions, no usage metering, no annual renewal. Evaluate free, then own it.

Security

Secure-by-default everywhere. TLS 1.2+ on 443 only, argon2id passwords, MFA mandatory by default, short-lived cloud credentials, and tenant isolation enforced at the database layer.

HTTPS only

TLS 1.2+ on port 443. No port 80 anywhere. HSTS with preload.

Read-only cloud access

IAM cross-account roles (AWS), Entra federated credentials (Azure), workload identity federation (GCP).

Tenant isolation

Postgres row-level security, per-tenant KMS envelope encryption, tenant-prefixed S3 keys.

Read the security page →   Download the security white paper →

Pricing

One licence, unlimited estate. No per-resource metering, no seat tax, no annual renewal. Evaluate free, then buy the whole platform outright with one payment.

Evaluation

$0

Capped at 100 resources · 1 account · 3 users

  • Full discovery across AWS, Azure & GCP
  • Diagrams & reports (watermarked)
  • Critical/High findings
  • Runs in your own cloud, no data egress
Install the chart

Perpetual Licence

$30,000 one-time

+ optional $6,000/yr maintenance after year one

Buy once. Yours to keep. Maintenance optional.

  • Unlimited resources, accounts & users
  • All severities, all reports (PDF + DOCX, scheduled)
  • SSO (SAML/OIDC), SCIM, WebAuthn, custom roles
  • 7-year immutable audit, no watermark
  • Onboarding + first year of updates & support included
See pricing

Ready to see your estate, end to end?

Book a live demo or take the interactive walkthrough.

Open live demo → Contact sales