ThreatMapper
ThreatMapper copied to clipboard
deepfence
AWS Security Hub Integration
Additional context AWS Security Hub provides you with a comprehensive view of your security state in AWS and helps you check your environment against security industry standards and best practices. With this Integration, all of the Deepfence ThreatMapper-related resources(scan results) with respect to AWS infrastructure can be managed at a single place, i.e., the AWS Security Hub console.
Is your feature request related to a problem? Please describe. Currently, AWS Security Hub users using Deepfence ThreatMapper have to manage Deepfence ThreatMapper scan results separately from their other AWS security findings. With this integration, Deepfence ThreatMapper scan results will be pushed to AWS Security Hub as findings.
Describe the solution you'd like
- User will have to install Deepfence Cloud Scanner for AWS as mentioned here
- On the AWS Security Hub integrations page on the Deepfence console, user will be able to configure the AWS Accounts and the Deepfence resources required.
- All the configured Deepfence resources(vulnerabilities, compliance, etc) will be mapped to AWS Security Hub Findings and pushed to corresponding AWS accounts
Changes Required for UI
- Add a new integration item for "AWS Security Hub" on integration section.
- Inputs are similar to S3 integration(aws access key, secret key, region, resource, accountId)
Components/Services
- [x] UI/Frontend
- [x] API/Backend
- [ ] Agent
- [ ] Deployment/YAMLs
- [ ] CI/CD Integration
- [x] Other (specify): Cloud Scanner
Additional context Add any other context or screenshots about the feature request here.
