Package: wnpp Severity: wishlist Owner: Pedro Loami Barbosa dos Santos <pe...@loami.eng.br>
* Package name : awsome-cis-checker Version : 1.0 Upstream Author : Secforce, David R. @Fiti * URL : https://github.com/SECFORCE/awsome-cis-checker * License : MIT Programming Lang: Python Description : CIS Benchmark checker for AWS AWSome CIS Checker is a tool designed to automate the whole process of checking AWS configurations in accordance with one of the most widely used industry best practice guides: the CIS Benchmarks. . Based on Boto3, an AWS SDK for Python, AWSome CIS Checker uses the set of credentials provided on a local AWS Client configuration to verify if the elements of a certain configuration are compliant with CIS Benchmarks. This covers all the basic checks but also allows for a “deeper” inspection of the configuration by investigating more obscure options which could facilitate further attacks vectors. This package is useful to a pentester, or any other security aware professional to identify potential security risks within their AWS environment, by running a checklist based on CIS Benchmarks best practice guides. Hopefully this tool will increase coverage during security assessment and also will help sysadmins to understand better their AWS infrastructure and consequently improve the security of their environments. More information about the tool and its developers can be found here: https://www.secforce.com/blog/awsome-cis-checker/ This package will be maintened by me, with support of my mentor/ sponsor and in collaboration with the upstream.