steampipe-plugin-aws
steampipe-mod-azure-compliance
steampipe-plugin-aws | steampipe-mod-azure-compliance | |
---|---|---|
8 | 2 | |
171 | 50 | |
0.6% | - | |
9.3 | 7.7 | |
5 days ago | 26 days ago | |
Go | HCL | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
steampipe-plugin-aws
-
Osquery: An sqlite3 virtual table exposing operating system data to SQL
be mindful of its AGPLv3 https://github.com/turbot/steampipe/blob/v0.21.8/LICENSE (AFAIK v0.4.3 is the last MIT release https://github.com/turbot/steampipe/blob/v0.4.3/LICENSE ) and the actual providers are Apache 2 <https://github.com/turbot/steampipe-plugin-aws/blob/v0.131.0...> (but I don't know if provider drift makes them compatible with 0.4 or not)
iasql seems to be AWS only, but good for them for taking this on:
-
Need to audit an Azure environment, any tip?
It's a very similar approach querying any of the plugins (AWS, Azure, etc) as it's a common interface to query those APIs with SQL. The AWS plugin is one of the more widely used in the community, along with it's associated mods to visualize resources and compliance to security & ops benchmarks.
-
Easily Query your Cloud Inventory with Steampipe
~$ steampipe plugin install aws aws [====================================================================] Done Installed plugin: aws@latest v0.78.0 Documentation: https://hub.steampipe.io/plugins/turbot/aws
-
Where are those CloudTrail IP addresses coming from?
Setting up CloudTrail is essential to understanding your users' AWS API activity: what happened, by whom and from where. One field in the event logs is source IP address. But that doesn't tell you where in the world those AWS API actions are coming from. In this post we'll show how to use Steampipe with the AWS and ipstack plugins to enrich your CloudTrail events with location information.
-
How to perform a security audit of your AWS account in AWS CloudShell
In my last post I showed how to install Steampipe and use it to instantly query your AWS APIs using SQL right in AWS CloudShell. For example here's a query that uses the Steampipe AWS plugin to query which AWS IAM users have MFA enabled:
-
Instantly query your AWS APIs in CloudShell
It takes just a few seconds to install Steampipe itself, along with the AWS plugin that maps AWS API calls to Postgres tables.
- Querying AWS at scale across APIs, regions, and accounts
-
Categorizing Lambda functions based on their risk profile
Hint: We actually have some aws_cost_* tables in active development in this branch. Not ready for release yet, but we're excited about how they are coming together!
steampipe-mod-azure-compliance
-
Need to audit an Azure environment, any tip?
One other thing I've been meaning to R&D is SteamPipe's Azure Compliance Mod , which is open source and looks to make life a bit easier
-
Azure Compliance Scanning
git clone https://github.com/turbot/steampipe-mod-azure-compliance.git cd steampipe-mod-azure-compliance
What are some alternatives?
steampipe - Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
steampipe-mod-aws-thrifty - Are you a Thrifty AWS dev? This mod checks your AWS accounts for unused and under-utilized resources using Powerpipe and Steampipe.
steampipe-plugin-hackernews - Use SQL to instantly query stories, users and other items from Hacker News. Open source CLI. No DB required.
steampipe-samples - Examples, samples, snippets and scripts to use with Steampipe.
steampipe-mod-aws-compliance - Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.
steampipe-mod-zoom-compliance - Run individual configuration, compliance and security controls or full compliance benchmarks for CIS for Zoom using Powerpipe and Steampipe.
steampipe-plugin-okta - Use SQL to instantly query users, groups, applications and more from Okta. Open source CLI. No DB required.
steampipe-plugin-virustotal - Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.
steampipe-plugin-sdk - Steampipe Plugin SDK is a simple abstraction layer to write a Steampipe plugin. Plugins automatically work across all engine types including the Steampipe CLI, Postgres FDW, SQLite extension and the export CLI.
HomeBrew - 🍺 The missing package manager for macOS (or Linux)
steampipe-mod-aws-insights - View dashboards and reports across all of your AWS accounts using Powerpipe and Steampipe.