cartography
fixinventory
cartography | fixinventory | |
---|---|---|
11 | 38 | |
2,872 | 1,533 | |
0.7% | 0.5% | |
7.8 | 9.6 | |
4 days ago | 7 days ago | |
Python | Python | |
Apache License 2.0 | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cartography
-
Any AWS networking visualization tool?
Cartography (Python application) will get you part of the way there, in that it will discover the state of the environment, record node information and relationships in a graph database, and can be easily extended. You can also then easily write queries about the relationships of various resources to answer questions like “what can I reach from VPC X”. Drawing diagrams though is very hard to do well without extra input.
-
ZeusCloud - Open-source Cloud Security built on Neo4j
Build an asset inventory of the cloud environment. (using an OSS project called cartography)
-
ZeusCloud: An open source cloud security platform
The project is still early, so we’d love your feedback! We’ve based our cloud asset inventory on another great OSS project called cartography. So far, we’ve added misconfiguration checks and common identity-based attack paths. Up next on our roadmap are network/access graph visualizations, vulnerability scanning, and secret scanning!
- Graph Databases
- Open Source tool that dumps infrastructure data into a graph database to query
-
Starting your Cloud Security Journey
The first step involved in threat modelling is to build an architecture diagram of the system you are protecting. This also involves building a list of assets in the system. You cannot protect something which you don’t have visibility over. We can use tools such as CloudMapper from the previous step for building an architecture diagram of an AWS cloud environment. There are similar tools for threat modeling for other cloud service providers like Cartography.
- I built an open-source GraphQL powered search engine for your AWS infrastructure.
-
Identify AWS Security Groups attached to public resources
Lyft made a tool called Cartography, which scrapes your AWS Account(s) and inserts representations of many of your cloud resources into a Neo4j (graph) database. This makes it easy to query and discover how things are connected in your account.
-
My Experience Contributing To The Cartography Open Source Project
Recently, we at Cloudanix made open source contributions to the Cartography project by Lyft. We contributed to the pre-existing AWS module by adding support for KMS and API gateway. Since the Cartography project did not have support for Microsoft Azure, we started from scratch to add that capability to Cartography. We added support for Azure services like CosmosDB, SQL, Storage, and Virtual Machines.
-
How to 10X Your Company’s Security (Without a Series D)
[2] https://github.com/lyft/cartography
fixinventory
-
Show HN: Fix – An open source cloud asset inventory for cloud security engineers
The reasoning is explained in the very section of our Github org README you quoted this sentence from. Our main open source project is Fix Inventory (https://github.com/someengineering/fixinventory) and that is very well documented (https://inventory.fix.security) and uses no commercial 3rd party libraries.
The Fix SaaS frontend that you're referring to and that you find at https://fix.security builds upon Fix Inventory. We could have just made it closed-source like every other SaaS (think Grafana Cloud). But because I'm a big proponent of OSS we decided to open source our entire SaaS stack, frontend, backend as well as all internal tooling. The main intend here is transparency, not so you spin up your own SaaS environment.
Essentially we develop the SaaS for ourselves first and foremost, but saw no reason to make it closed source. So that is why it might be using any number of commercial 3rd party add-ons.
> I'm curious to know what Material UI provided that any other open-source UI library did not.
I believe it was some MUI X table features like multi row sorting that we didn't feel like re-implementing. I'm sure there's other open source libs that would do that, but we've settled on MUI and are not going to start mixing different UI libraries for different visual elements if we don't absolutely have to.
-
Unreal Engine change its price for non-game apps
It is a good time for send the showreel of serious apps in Godot:
https://www.youtube.com/watch?v=9kKp0oguzr8
I know a free software monitoring tool made with Godot:
https://www.youtube.com/watch?v=AVAU2JjvHug
https://github.com/someengineering/resoto
-
Cloudquery, Resoto, Steampipe, or Airbyte?
Resoto: https://resoto.com/
- Invoice granularity: Show different accounts/cost allocation tags on invoice
- Resoto | Graph-based Cloud Asset Inventory
- How much does Discovery really cost?
- Forming an MSP - some questions
-
someengineering/cloud2sql - Read infrastructure data from your cloud and export it to a SQL database.
It is a sub-project of our cloud resource management tool Resoto but runs standalone and stateless. It's meant for easy integration into your own data pipelines.
-
SRE tools?
--> https://github.com/someengineering/resoto
- Graph Databases
What are some alternatives?
cloudquery - The open source high performance ELT framework powered by Apache Arrow
cloud-custodian - Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
CloudGraph cli - The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.
query-exporter - Export Prometheus metrics from SQL queries
ScoutSuite - Multi-Cloud Security Auditing Tool
sysbindings - sysctl/sysfs settings on a fly for Kubernetes Cluster. No restarts are required for clusters and nodes.
libretaxi - Open source Uber #deleteuber
prometheus_flask_exporter - Prometheus exporter for Flask applications
clutch - Extensible platform for infrastructure management
steampipe - Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
Scout2 - Security auditing tool for AWS environments
cloud-nuke - A tool for cleaning up your cloud accounts by nuking (deleting) all resources within it