Cloud Security Suite v3.0 released: auditing the security posture of AWS infrastructure

by do son · Published · Updated

Cloud Security Suite

CS Suite is a one-stop tool for auditing the security posture of the AWS infrastructure and does system audits as well. CS Suite leverages current open source tools capabilities and has other missing checks added into one tool to rule them all.

The major features include:

  • Simple installation with the support of python virtual environment and Docker containers
  • Initiate all tools/audit checks in one go
  • AWS Infra Audit:
    • Easify your “open source setup” pain.
    • Compilation of all audit checks in one place
    • Centralized portable reports
    • Audits individual systems
  • AWS Instance Audit:
    • IP based auditing
    • Region independent Audit (Public IP)
    • Supports both public and private IPs for Default region
    • Automatic Report Generation and Fetching
    • Portable HTML report

Installation

git clone https://github.com/SecurityFTW/cs-suite.git

cd cs-suite/

sudo python setup.py

 

Note – Generate a set of ReadOnly AWS keyswhich the tool will ask to finish the installation process. For GCP, setup google cloud SDK.

Run

To run AWS Audit - python cs.py -env aws

To run GCP Audit - python cs.py -env gcp -pId <project_name>

To run Azure Audit - python cs.py -env azure

 

  • The final report will be available in reports directory
  • The final AWS Audit report looks like below:

AWS Audit report

  • The final GCP Audit report looks like below:

GCP Audit report

 

Tutorial

Demo

Copyright (C) shivankarmadaan

Source: https://github.com/SecurityFTW/

 

Tags: Cloud Security Suitecs-suite