Skip to content

looCiprian/AWS-audit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits

cmd

cmd

 
 

internal

internal

 
 

.gitignore

.gitignore

 
 

AWS-audit.go

AWS-audit.go

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

aws-audit-example.yaml

aws-audit-example.yaml

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

Repository files navigation

AWS-audit

Allows to discover AWS misconfiguration and security issues on S3, Lambda Function and IAM Policy attached to those services.

Services

S3

  • Bucket Policy Audit [principal, resource, action contains *]
  • AccessPoint Policy Audit [principal, resource, action contains *]
  • ACL Audit
  • Public Access Audit
  • Encryption Configuration
  • Versioning
  • Logging
  • Web Site Audit functionality
  • Bucket Policy doent not prevent HTTP access

Lambda

  • Lambda Code Signing Audit
  • Lambda Role (Policy audit) [principal, resource, action contains *]
  • Lambda Resource Policy Audit [principal, resource, action contains *]
  • Lambda Environment Audit

IAM Role

  • Check for unused role
  • Check role Policy Audit [principal, resource, action contains *]

How to run

go run AWS-audit.go -c aws-audit-example.yaml

About

AWS-audit is a tool to review AWS configuration of several services

Topics

aws security lambda security-audit cloud aws-lambda iam s3-bucket aws-security security-tools cloud-security aws-audit

Resources

Readme

License

GPL-3.0 license
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages