ScoutSuite icon indicating copy to clipboard operation
ScoutSuite copied to clipboard

Published 20 hours ago verified publisher icon nccgroup

Regions filtering

Open th3-d4v1d-c0de opened this issue 2 years ago • 2 comments

AWS has multiple regions and a lot of times costumer only use one or two regions, in fact very rarely will use all regions. The reports outcome still lists every regions cluttering the reports with unnecessary information

Proposal:

  • Add automatic filters that detect which regions are being used and only include their findings in the reports

Alternative:

  • Other option would be to include a manual filter where it would reduce the findings to the selected regions

Keep up the good work

th3-d4v1d-c0de avatar Oct 19 '22 20:10 th3-d4v1d-c0de

Hi @th3-d4v1d-c0de, there is a --regions argument under scout aws. Would that be the alternative solution you were looking for?

liyun-li avatar Apr 10 '23 18:04 liyun-li

Hi @liyun-li, I am aware of that function but that limits the scan itself. The scenario would be that even if the "--region" was not selected then only regions that actually have something (some resource) would appear. This is helpful for compliance scenarios where developers are only supposed to use one region (let's say EU) and by mistake create a resource on another region (like US), without the need to filter-out default resources or false-positives. Hope this clarifies.

th3-d4v1d-c0de avatar Apr 11 '23 16:04 th3-d4v1d-c0de