{"id":13539262,"url":"https://github.com/dowjones/hammer","last_synced_at":"2025-04-05T11:10:02.620Z","repository":{"id":33923530,"uuid":"141596594","full_name":"dowjones/hammer","owner":"dowjones","description":"Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)","archived":false,"fork":false,"pushed_at":"2023-07-17T09:20:09.000Z","size":4344,"stargazers_count":431,"open_issues_count":33,"forks_count":61,"subscribers_count":28,"default_branch":"master","last_synced_at":"2024-04-15T04:03:08.485Z","etag":null,"topics":["aws","aws-security","cloudsecurity","devsecops"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/dowjones.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":"AUTHORS","dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-07-19T15:12:04.000Z","updated_at":"2024-08-01T09:22:49.007Z","dependencies_parsed_at":"2024-08-01T09:22:45.963Z","dependency_job_id":"42cf6a07-4124-42fd-9939-9eed6f05375e","html_url":"https://github.com/dowjones/hammer","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dowjones%2Fhammer","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dowjones%2Fhammer/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dowjones%2Fhammer/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/dowjones%2Fhammer/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/dowjones","download_url":"https://codeload.github.com/dowjones/hammer/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247325693,"owners_count":20920714,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","aws-security","cloudsecurity","devsecops"],"created_at":"2024-08-01T09:01:22.579Z","updated_at":"2025-04-05T11:10:02.593Z","avatar_url":"https://github.com/dowjones.png","language":"Python","funding_links":[],"categories":["Python","Infrastructure","Other Awesome Lists","\u003ca id=\"c71ad1932bbf9c908af83917fe1fd5da\"\u003e\u003c/a\u003eAWS"],"sub_categories":["Visual Resource Graphing","\u003ca id=\"0476f6b97e87176da0a0d7328f8747e7\"\u003e\u003c/a\u003eblog"],"readme":"![HammerLogo](docs/images/dow-jones-hammer-logo.png)\n\n## Overview\n\nDow Jones Hammer is a multi-account cloud security tool for AWS. It identifies misconfigurations and insecure data exposures within most popular AWS resources, across all regions and accounts. It has near real-time reporting capabilities (e.g. JIRA, Slack) to provide quick feedback to engineers and can perform auto-remediation of some misconfigurations. This helps to protect products deployed on cloud by creating secure guardrails.\n\n![HammerLifecycleDiagram](docs/images/Architecture.png)\n\n## Documentation\nDow Jones Hammer documentation is available via GitHub Pages at [https://dowjones.github.io/hammer/](https://dowjones.github.io/hammer/).\n\n## Security features\n* [Insecure Services](https://dowjones.github.io/hammer/playbook2_insecure_services.html)\n* [S3 ACL Public Access](https://dowjones.github.io/hammer/playbook1_s3_public_buckets_acl.html)\n* [S3 Policy Public Access](https://dowjones.github.io/hammer/playbook5_s3_public_buckets_policy.html)\n* [IAM User Inactive Keys](https://dowjones.github.io/hammer/playbook3_inactive_user_keys.html)\n* [IAM User Keys Rotation](https://dowjones.github.io/hammer/playbook4_keysrotation.html)\n* [CloudTrail Logging Issues](https://dowjones.github.io/hammer/playbook6_cloudtrail.html)\n* [EBS Unencrypted Volumes](https://dowjones.github.io/hammer/playbook7_ebs_unencrypted_volumes.html)\n* [EBS Public Snapshots](https://dowjones.github.io/hammer/playbook8_ebs_snapshots_public.html)\n* [RDS Public Snapshots](https://dowjones.github.io/hammer/playbook9_rds_snapshots_public.html)\n* [SQS Public Policy Access](https://dowjones.github.io/hammer/playbook10_sqs_public_policy.html)\n* [S3 Unencrypted Buckets](https://dowjones.github.io/hammer/playbook11_s3_unencryption.html)\n* [RDS Unencrypted Instances](https://dowjones.github.io/hammer/playbook12_rds_unencryption.html)\n* [AMIs Public Access](https://dowjones.github.io/hammer/playbook13_amis_public_access.html)\n\n## Technologies\n* Python 3.6\n* AWS (Lambda, Dynamodb, EC2, SNS, CloudWatch, CloudFormation)\n* Terraform\n* JIRA\n* Slack\n\n## Contributing\n\nYou are welcome to contribute!\n\n### Issues:\n\nYou can use [GitHub Issues](https://github.com/dowjones/hammer/issues) to report issues.\nDescribe what is going on wrong and what you expect to be correct behaviour.\n\n### Patches:\n\nWe currently use [dev](https://github.com/dowjones/hammer/tree/dev) branch for ongoing development. Please open\nPRs to this branch.\n\n### Run tests:\n\nRun tests with this command:\n```shell\ntox\n```\n\n\n## Contact Us\nFeel free to create [issue report](https://github.com/dowjones/hammer/issues/new), pull request or just email us at [hammer@dowjones.com](mailto:hammer@dowjones.com) with any other questions or concerns you have.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdowjones%2Fhammer","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdowjones%2Fhammer","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdowjones%2Fhammer/lists"}