prowler
aws-shell
Our great sponsors
prowler | aws-shell | |
---|---|---|
24 | 8 | |
9,514 | 7,121 | |
3.0% | 0.4% | |
9.9 | 0.0 | |
1 day ago | 2 months ago | |
Python | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
prowler
-
Ask HN: Cloud security auditing for indie-grade projects?
Which cloud provider?
https://github.com/prowler-cloud/prowler is easy to get going with, and gives decent results. It's much stronger at AWS than GCP or Azure.
Steampipe can be a little harder to wrap your head around, but scales really well and has broader support: https://hub.steampipe.io/mods?objectives=security
-
Automating AWS Prowler Scans
Task Role: Select or create a new role that has the necessary permissions. Ensure this role has the three required Prowler policies and an additional custom policy to put objects into the desired S3 bucket.
-
Azure and M365 Secure Config Review
Prowler and ScoutSuite are a good start for cloud stuff.
- AWS Account - Analysis
-
Open source alternative cloud security tool that works like Wiz/Lacework/Aqua
Yes! There are open source cloud security tools! Here are some open source tools out there: steampipe, prowler, cloudquery, and ZeusCloud.
-
CSPM opensource suggestions
If AWS is in use then i would add prowler to the list - https://github.com/prowler-cloud/prowler This is the best open source cspm for aws.
-
Practical way for security assestment in AWS with Prowler
More info you can find it at Prowler Github and Prowler Docs
- AWS Security Scanner
-
Opensource equivalent of Sailpoint
You’re not going to find a shiny enterprise web ui for free but there are tools out there. If you just want to review AWS accounts, you can use prowler https://github.com/prowler-cloud/prowler
-
Automated penetration testing for a cloud infrastructure
Here is a good open source option to get started: https://github.com/prowler-cloud/prowler
aws-shell
-
9 Ways to an EKS Cluster - Way 2 - AWS CLI
While at it - I heartily recommend you to install aws-shell which boosts your aws cli productivity by providing graphical autocompletion, hints and shortcuts as shown in the image below. I only discovered it recently myself and it's definitely a game changer!
-
Why can't I use grep on AWS CLI output?
AWS-shell is super handy for learning the CLI.
-
Starting to use AWS CLI at work. Need beginner tips.
aws-shell will improve your life :) https://github.com/awslabs/aws-shell
- My Most Loved AWS Developer Tools & Resources
-
My Most Loved AWS Developer Tools & Resources
With aws-shell you're able to quickly run commands against any AWS API from your local terminal with great auto-completion. I use it very regularly and it reduces the need to jump to the documentation. You can find it on Github but can also install it easily via your favorite package manager like homebrew.
-
MTurk Requester Notify-workers fails with endpoint URL error
If so the region config is explained here: https://github.com/awslabs/aws-shell#configuration
- Linux - aws-iam-authenticator & other AWS - WTF?
- DevOps on Linux Terminal
What are some alternatives?
ScoutSuite - Multi-Cloud Security Auditing Tool
SAWS - A supercharged AWS command line interface (CLI).
cloudmapper - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
aws-cli - Universal Command Line Interface for Amazon Web Services
steampipe-mod-aws-compliance - Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.
leapp - Leapp is the DevTool to access your cloud
terraform-aws-secure-baseline - Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
onelogin-aws-cli - Assume an AWS Role and cache credentials using Onelogin
opencspm - Open Cloud Security Posture Management Engine
terraform - Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.
CIS-Ubuntu-20.04-Ansible - Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
Pulumi - Pulumi - Infrastructure as Code in any programming language. Build infrastructure intuitively on any cloud using familiar languages 🚀