security_monkey
security_monkey copied to clipboard
Netflix
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
With the new issue score override (and disable), there is no longer a reason to keep AuditorSettings. UI/API/DB can be modified to remove these.
I am trying to ignore creation of all instances whose name starts something with keyword-*. I have given technology as "ec2instance" and prefix as "keyword". Still when an instance gets...
Hi All, I've setup my security monkey and everything works fine. However, when trying to connect to my GCP Project, I can't see anything under the search tab, so I'm...
## Description of issue: I execute monkey find_changes and after retrieving at least some information it throws this exception: ``` 2018-03-08 11:11:18,988 DEBUG: Adding issue: gcsbucket/EUROPE-WEST1/username/bucketname OWNERS max exceeded in...
## Please make sure that you have checked the boxes: - [X] Review the [Quickstart guide](quickstart.md) - [X] Search for both open and closed issues regarding the problem you are...
Add AWS Organization support - audit the set of Service Control Policies defined and which OU's / accounts they are bound to
Some of the checks require some expertise to understand or figure out how to fix. For example, for S3 buckets, you can end up with "POLICY - No Policy." which...
Under notification settings, I set Change Emails to be "With Issues" and set EMAIL_AUDIT_REPORTS_INCLUDE_JUSTIFIED=False in the config. I assumed this meant it would only email me on changes with unjustified...
When you wish to find all objects whose name contains a substring, the select2 search boxes require that you select an item from the drop down. You can't search for...
https://github.com/Netflix/security_monkey/blob/develop/docs/quickstart.md. These fields are needed to run SM on GCP instance. Mentioning it in doc will be helpful. GOOGLE_CLIENT_ID GOOGLE_AUTH_ENDPOINT GOOGLE_SECRET is mandatory to put in env-config/config.py Also, some screenshot...
