Cloud Security Suite v3.0 released: auditing the security posture of AWS infrastructure

by do son · Published August 9, 2018 · Updated August 9, 2018

Cloud Security Suite

CS Suite is a one-stop tool for auditing the security posture of the AWS infrastructure and does system audits as well. CS Suite leverages current open source tools capabilities and has other missing checks added into one tool to rule them all.

The major features include:

Simple installation with the support of python virtual environment and Docker containers
Initiate all tools/audit checks in one go
AWS Infra Audit:
- Easify your “open source setup” pain.
- Compilation of all audit checks in one place
- Centralized portable reports
- Audits individual systems
AWS Instance Audit:
- IP based auditing
- Region independent Audit (Public IP)
- Supports both public and private IPs for Default region
- Automatic Report Generation and Fetching
- Portable HTML report

Installation

git clone https://github.com/SecurityFTW/cs-suite.git

cd cs-suite/

sudo python setup.py

Note – Generate a set of ReadOnly AWS keyswhich the tool will ask to finish the installation process. For GCP, setup google cloud SDK.

Run

To run AWS Audit - python cs.py -env aws

To run GCP Audit - python cs.py -env gcp -pId <project_name>

To run Azure Audit - python cs.py -env azure

The final report will be available in reports directory
The final AWS Audit report looks like below:

The final GCP Audit report looks like below:

Tutorial

Demo

Copyright (C) shivankarmadaan

Source: https://github.com/SecurityFTW/

Search

Brilliantly

Content & Links