cloudmapper
workload-discovery-on-aws
Our great sponsors
cloudmapper | workload-discovery-on-aws | |
---|---|---|
8 | 6 | |
5,839 | 684 | |
0.9% | 1.5% | |
3.6 | 6.2 | |
26 days ago | 2 months ago | |
JavaScript | JavaScript | |
BSD 3-clause "New" or "Revised" License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cloudmapper
-
A humble idea to fetch the AWS cloud resources to make them inventoriable as possible. Make it easy to query for resources and help on a daily basis work [devops].
cloudmapper
- Diagram Aws account
- Tool to map out resources!
-
Is there a good tool to “map” out AWS infrastructure in your account?
if u want an open source alternative try this: https://github.com/duo-labs/cloudmapper
- Is there a tool to map a AWS/vpc environment?
-
Is there any way to efficiently audit security groups?
You can use CloudMapper for some visualizations and CMDB but the diagram is kinda difficult and you have to put some effort into it.
-
How to map all resources in an account I don't know
You could try https://github.com/duo-labs/cloudmapper
-
A magic button to capture AWS infra state?
CloudMapper helps you analyze your Amazon Web Services (AWS) environments. The original purpose was to generate network diagrams and display them in your browser. It now contains much more functionality, including auditing for security issues.
workload-discovery-on-aws
-
Diagram Aws account
Workload Discovery on AWS has recently released a new version - would that work for you?
-
Ask HN: How to quickly animate sketches and 2D diagrams?
It's interpreted line-by-line so that each line represents one state of the diagram. There are commands to delete nodes: when I delete a node I just remove it from its parent but leave it in the top-level state. That has the neat effect that if I re-add it, I get the node with all its descendents and connections restored in one step, which I can use to pre-diagram things I talk about often.
After calculating the drawing state by applying all the commands from the start to the current selection, the next step is to limit this to the visible pieces. I make a copy of the drawing state, starting from the currently zoomed node and following all children. Then I add all connections, if all the 'to' ends of the connections are visible.
Next, I do layout. Starting with the visible tree, annotate all nodes with positions of the box (if any), the icon, and the label. The diagrams I'm drawing are similar to those produced by AWS Perspective: https://aws.amazon.com/solutions/implementations/aws-perspec... , so if a node has no children I draw it as a large icon with a label below, if it has children, it is a box with a small icon to the top left, a centred label at the top. Each node can choose one of a small number of layouts that I can do automatically with just a list of children: 'ring' (a circle of nodes), 'row', 'column', or 'snake' (the default: alternate rtl-ltr rows to evenly fill the space; this will be a grid if that fits or could end up like 4-3-4-3 if it doesn't). In ring & snake, boxes are always 4:3; in row and column they are stretched to fit.
Next, I do animation. I keep around the previous layed-out state, and use window.requestAnimationFrame to calculate the position of boxes between the start and end state. A box that is in both start and end states is moved, if it is only in start or end I fade it in or out as need be. This lets me animate between _any_ two states of the drawing, so I can talk about one bit of the diagram, then jump back and forth by clicking in the command window, and it smoothly animates between them. I found animating for just 0.5s worked best for interactivity; it's nice to see a slower move but it feels laggy when typing.
I calculate arrow positions after calculating the final position of boxes and icons. I chose to use circular arcs, because you will never get an awkward situation where an arc lies directly along the edge of a box; straight things are always boxes, curvy things are always arrows. SVG wants two endpoints and a centre to draw these. So, I start with an arc between the centres of the two boxes, choose a radius twice as long as the distance between these points; then I calculate the intersection of the arc with the boxes, and use those two intersection points as the start/end of the arc. (this isn't that difficult, the formula for the arc is in the svg spec, and it's checking 4 straight lines, choose the intersection point closest to the other box). Like the boxes, the arrows fade in and out if they are not needed in one of the start or end states.
All of this then just replaces the content of the svg. It's surprisingly smooth.
One last detail is icons. I'm using the icons from mingrammer (https://github.com/mingrammer/diagrams/tree/master/resources), which gives me about 1600(!). Finding an icon _while you type_ is awkward and initially I had to drop to the shell to find the file I was going to refer to. I tried giving the drawing tool a mode that would let me visually pick the icon, but 1600 is too many. So I changed it to use a fuzzy search to find an appropriate icon: it looks for the icon where the sequence of characters appear in the shortest substring of the icon path: eg for 'ec2' it constructs the regex `.(e.?c.*?2)`, scoring the matching substring 'ec2' better than 'elastic2', and the shorter containing string 'aws/compute/ec2' better than eg 'aws/compute/ec2-rounded'. (I have a further round of preferences so that the top level aws iconset is preferred to eg the ibm one, which has terrible icons). This gives you an icon for almost anything you type, and encourages a more playful approach to picking the icon than the exact-match approach.
There's a bit more to it, I also accept some markdown which fades from the diagram to slides with bullet points, then back to the diagram if the current command is a diagramming command. But the description above is most of it. I could probably have done this better with eg d3 to do the drawing but I am not a front end developer at all and the whole thing was more of a hack over a couple of weekends. I should clean it up a bit, but it works.
I serve up pre-prepared pages with this js attached from github pages, I can walk through eg the flow of data clicking the down arrow to change the selection which causes it to animate to the next state which has the next arrow... and so on.
-
How would you identify your company’s AWS infrastructure, so you can map it for documentation purposes?
AWS has a solution called AWS Perspective that will do exactly this. The solution itself is free and open source, you only pay for the resources it creates. You can also export the diagrams to draw.io if you want to edit them manually. Also, it will show you how much your solution(s) and each of its components is costing you.
- GitHub - awslabs/aws-perspective: AWS Perspective is a solution to visualize AWS Cloud workloads. Using Perspective you can build, customize, and share detailed architecture diagrams of your workloads based on live data from AWS.
-
Is there a tool to map a AWS/vpc environment?
Check out - https://aws.amazon.com/solutions/implementations/aws-perspective/
- AWS Perspective is a solution to visualize AWS Cloud workloads. Using Perspective you can build, customize, and share detailed architecture diagrams of your workloads based on live data from AWS.
What are some alternatives?
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
Grant - OAuth Proxy
ScoutSuite - Multi-Cloud Security Auditing Tool
GoJS, a JavaScript Library for HTML Diagrams - JavaScript diagramming library for interactive flowcharts, org charts, design tools, planning tools, visual languages.
cloudsploit - Cloud Security Posture Management (CSPM)
sso-wall-of-shame - A list of vendors that treat single sign-on as a luxury feature, not a core security requirement.
cloudsplaining - Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
middy - 🛵 The stylish Node.js middleware engine for AWS Lambda 🛵
aws-sso-creds-tool - script to (almost) auto update aws sso credentials file
modules.tf-lambda - Infrastructure as code generator - from visual diagrams created with Cloudcraft.co to Terraform
jsplumb - Visual connectivity for webapps
dependency-cruiser - Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.