• Docs
  • CloudQuery vs Others
  • CloudQuery vs AWS Config

CloudQuery vs AWS Config

AWS Config is the native AWS asset inventory provided by AWS.

Key Differences:

  • Resource Types: CloudQuery supports more than 250 types of resources while AWS Config currently supports about 120 types of resources (tables). Being an open-source project you can easily add the missing resources without being blocked by a vendor.
  • Vanilla PostgreSQL: CloudQuery uses vanilla PostgreSQL which makes it play nicely with the whole SQL eco-system and gives you the ability to re-use other tools like Grafana/BI. AWS Config is using a proprietary subset of SQL and database and thus doesn't give you the ability to re-use other tools easily.
  • Cloud Agnostic: CloudQuery gives you the ability to assess, audit and monitor multi-cloud and SaaS infrastructure.
  • Pricing: CloudQuery is open-source and thus you will pay only for the hosting of your PostgreSQL (you can use RDS, or any other managed version) and the compute for running CQ binary. AWS Config charges both per item recorded and rule evaluated.
  • Limits: See limits section below. AWS Config has a lot of soft and hard limit (that cannot be increased). CloudQuery doesn't impose any of those limits and is bound mainly by the PostgreSQL instance and compute.
  • Policy Language: CQ uses an HCL configuration with SQL as the query engine to define rules. AWS Config uses JSON/YAML and subset SQL as the query engine.

Limits Comparison

This will only list hard limits as soft limits can be increased (though it is not documented what is their max limit). Some limits are quite serious for large accounts (especially around number of rules/policies).

LimitAWS ConfigCloudQuery
Max Accounts10000No Limit
Maximum number of conformance packs per account (CQ Policies)50No Limit
Maximum number of AWS Config Rules per conformance pack (CQ Queries)130No Limit
Maximum number of AWS Config Rules per account across all conformance packs (Total Queries)130No Limit
Maximum number of conformance packs per organization (CQ Policies)50No Limit
Maximum AWS Config Rules per organization conformance pack (CQ Queries)130No Limit
Maximum number of AWS Config Rules per account across all organization conformance packs (CQ Queries)150No Limit
Maximum number of organization AWS Config rules per organization (CQ Queries)150No Limit