Skip to content
/ cloudtrail-cli Public

Blazing fast single purpose cli for CloudTrail log filtering

License

Apache-2.0 license
23 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

guessi/cloudtrail-cli

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

51 Commits

.github/workflows

.github/workflows

 
 

cmd

cmd

 
 

pkg

pkg

 
 

.gitignore

.gitignore

 
 

CHANGELOG.md

CHANGELOG.md

 
 

LICENSE

LICENSE

 
 

Makefile

Makefile

 
 

README.md

README.md

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

main.go

main.go

 
 

Repository files navigation

cloudtrail-cli

GitHub Actions GoDoc Go Report Card GitHub release GitHub go.mod Go version

Blazing fast single purpose cli for CloudTrail log filtering, written in golang

Usage

$ cloudtrail-cli --version
cloudtrail-cli version 1.0.11
$ cloudtrail-cli --help
NAME:
   cloudtrail-cli - Blazing fast single purpose cli for CloudTrail log filtering

USAGE:
   cloudtrail-cli [global options] command [command options] [arguments...]

VERSION:
   1.0.11

COMMANDS:
   help, h  Shows a list of commands or help for one command

GLOBAL OPTIONS:
   --profile value, -p value
   --region value, -r value
   --start-time value, -s value   Timestamp in 2023-01-01T00:00:00 format (UTC)
   --end-time value, -e value     Timestamp in 2023-01-01T00:00:00 format (UTC)
   --event-id value               Filter events with event id
   --event-name value             Filter events with event name
   --user-name value              Filter events with user name
   --event-source value           Filter events with event source
   --access-key-id value          Filter events with access key id
   --read-only                    Filter events with ReadOnly=true (default: false)
   --no-read-only                 Filter events with ReadOnly=false (default: false)
   --max-results value, -n value  (default: "20")
   --error-only                   Filter events with errors (default: false)
   --truncate-user-name           Truncate user name string (default: false)
   --truncate-user-agent          Truncate user agent string (default: false)
   --help, -h                     show help
   --version, -v                  print the version

Sample Output

$ cloudtrail-cli --start-time 2023-02-01T00:00:00 --end-time 2023-02-01T01:00:00 --event-name AssumeRole --max-results 5 --region us-east-1 --read-only
+--------------------------------------+------------+----------------------+----------+-------------------+-------------------------------+-------------------------------+-------------+-----------+----------+
| EventId                              | EventName  | EventTime            | Username | EventSource       | UserAgent                     | SourceIPAddress               | AccessKeyId | ErrorCode | ReadOnly |
+--------------------------------------+------------+----------------------+----------+-------------------+-------------------------------+-------------------------------+-------------+-----------+----------+
| 998a47f3-fb53-48e0-83f1-111111111111 | AssumeRole | 2023-02-01T00:58:28Z | -        | sts.amazonaws.com | eks.amazonaws.com             | eks.amazonaws.com             |             |           | true     |
| 56018bd8-d0f4-41d3-a718-111111111111 | AssumeRole | 2023-02-01T00:57:51Z | -        | sts.amazonaws.com | internetmonitor.amazonaws.com | internetmonitor.amazonaws.com |             |           | true     |
| d5f7ff3f-af90-4f05-9050-111111111111 | AssumeRole | 2023-02-01T00:55:22Z | -        | sts.amazonaws.com | ssm.amazonaws.com             | ssm.amazonaws.com             |             |           | true     |
| 139dd66c-d192-47fc-9158-111111111111 | AssumeRole | 2023-02-01T00:40:38Z | -        | sts.amazonaws.com | lambda.amazonaws.com          | lambda.amazonaws.com          |             |           | true     |
| 8af6dc45-fd58-4ad5-9e95-111111111111 | AssumeRole | 2023-02-01T00:35:06Z | -        | sts.amazonaws.com | lambda.amazonaws.com          | lambda.amazonaws.com          |             |           | true     |
+--------------------------------------+------------+----------------------+----------+-------------------+-------------------------------+-------------------------------+-------------+-----------+----------+

Install

Homebrew

$ brew tap guessi/tap && brew install cloudtrail-cli

For non-Homebrew users, click Details to view more methods.

For Linux users

$ curl -fsSL https://github.com/guessi/cloudtrail-cli/releases/latest/download/cloudtrail-cli-Linux-$(uname -m).tar.gz -o - | tar zxvf -
$ mv ./cloudtrail-cli /usr/local/bin/cloudtrail-cli

For macOS users

$ curl -fsSL https://github.com/guessi/cloudtrail-cli/releases/latest/download/cloudtrail-cli-Darwin-$(uname -m).tar.gz -o - | tar zxvf -
$ mv ./cloudtrail-cli /usr/local/bin/cloudtrail-cli

For Windows users

PS> $SRC = 'https://github.com/guessi/cloudtrail-cli/releases/latest/download/cloudtrail-cli-Windows-x86_64.tar.gz'
PS> $DST = 'C:\Temp\cloudtrail-cli-Windows-x86_64.tar.gz'
PS> Invoke-RestMethod -Uri $SRC -OutFile $DST

License

Apache-2.0

About

Blazing fast single purpose cli for CloudTrail log filtering

Topics

cli golang aws cloudtrail github-actions

Resources

Readme

License

Apache-2.0 license
Activity

Stars

23 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases 12

v1.0.11 Latest
Mar 24, 2024
+ 11 releases

Languages