Skip to content

k9 Security Docs

k9 Security helps cloud teams secure AWS IAM with simple access monitoring and infrastructure code built for continuous delivery.

These site will show you how to use the k9 Security APIs and infrastructure code.

How k9 works

Let's start with a brief introduction to k9 Security's architecture.

k9 Security Logical Architecture

k9 Security analyzes each monitored customer's account and delivers reports to the customer's Secure Inbox in S3 nightly. k9 tries to deliver all reports by 4AM Eastern Standard Time (9:00 UTC).

Those reports are delivered in the following formats:

  • xslx for people
  • csv for monitoring systems like Datadog, Splunk, and Athena
  • json for custom tools

But if you don't want to wait until tomorrow for an updated analysis you can trigger one via the k9 Security API.

Reachable Risk in your AI coding agent

The k9 MCP server connects your AI coding agent to Reachable Risk, scoring your CVE and dependency backlog by what is reachable in your code and actively exploited (KEV + EPSS). See Configure the k9 MCP Server to connect Claude, Claude Code, Opencode, and other agents.


Last update: July 3, 2026