prowler
prowler copied to clipboard
prowler-cloud
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness....
### Description This PR updates the regions for AWS services. ### License By submitting this pull request, I confirm that my contribution is made under the terms of the Apache...
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "github-actions[bot] avatar"){kind=avatar}
### Context A recent feature has been released to mitigate against dependency confusion in AWS CodeArtifact. More can be read here: - https://aws.amazon.com/blogs/devops/tighten-your-package-security-with-codeartifact-package-origin-control-toolkit/ - https://zego.engineering/dependency-confusion-in-aws-codeartifact-86b9ff68963d ### Description I've included this...
According to the official documentation, which the check refers to (URL provided by the variable` $CHECK_DOC_check120`), the policy is not "`AWSSupportAccess`" but "`AWSSupportServiceRolePolicy`". The policy `AWSSupportAccess` check returns FAIL because...
### Context We need to include shared libs in separate files and folders. ### Description - Move Security Hub integration to a separate file - Move Security Groups and Network...
**What happened?** Failing to get the credentials(Have set the AWS credentials in the environment variables as well as in the credentials file) **How to reproduce it** Steps to reproduce the...
The check_extra747 check includes AWS Neptune instances in it's query response, creating false positives for CloudWatch exports being 'disabled' for this instance. CW exports are only used for MySQL and...
### Context Include shodan integration as well as the ec2 check. ### Description - Add ec2_elastic_ip_shodan check - Add shodan integration (-N flag) - Add config yaml feature ### License...
### Context New service ACM added along with the checks: - acm_certificates_transparency_logs_enabled - acm_certificates_expiration_check ### Description Sample output: ### License By submitting this pull request, I confirm that my contribution...
### Context New service accessanalyzer added along with the check accessanalyzer_enabled_without_findings ### Description New service accessanalyzer added along with the check accessanalyzer_enabled_without_findings. Sample output: ``` ./prowler -c accessanalyzer_enabled_without_findings Check ID:...
### Context New service SecurityHub added along with the check securityhub_enabled ### Description New service SecurityHub added along with the check securityhub_enabled. Sample output: ``` ./prowler -c securityhub_enabled ``` ###...
Metadata
Owner
Metadata
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness....