GithubHelp home page GithubHelp logo

vishalgori / cis Goto Github PK

View Code? Open in Web Editor NEW
0.0 0.0 0.0 87 KB

AWS CIS benchmarks audit using cloudsploit across multiple accounts

License: Apache License 2.0

Python 1.42% JavaScript 97.74% Shell 0.84%

cis's Introduction

CloudSploit Scans using AWS Lambda and AWS Step functions

Background

CloudSploit scans is an open-source project designed to allow detection of security risks in an AWS account. These scripts are designed to run against an AWS account and return a series of potential misconfigurations and security risks.

Using Step functions and two AWS Lambda functions one can run CloudSploit scans across multiple AWS accounts.

Setup

  • Input all the required AWS accounts to be audit along with their IAM roles which can be used to audit those accounts in prep.py. This will be our Lambda_function_1 to prepare cloudsploit scanner Lambda_function_2 for cross account AWS audit.
  • Create a Step Function in AWS as below:
{
  "Comment": "AWS step function for AWS cross account security audit",
  "StartAt": "Lambda_function_1",
  "States": {
    "prepSecurityAudit": {
      "Type": "Task",
      "Resource": "arn:aws:lambda:us-west-2:1234:function:prepSecurityAudit",
      "Next": "Lambda_function_2"
    },
    "runSecurityAudit":{
    "Type": "Task",
    "Resource": "arn:aws:lambda:us-west-2:1234:function:runSecurityAudit",
    "End": true
  }
  }
}
  • Lambda_function_1 assumes the role passed by the environment variable account in the Lambda configuration. [Note: Thinking of adding an authenticated slack call to be passed as account name here to the step function which will basically kick off Lambda_function_1]
  • Lambda_function_2 the uses credentials of assumed role passed by Lambda_function_1 and scans the account using these credentials and cloudsploit tool. It then uploads the results to S3 bucket specified in CloudSploit's index.js

cis's People

Contributors

gorivishal11 avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.