{"id":13449939,"url":"https://github.com/nccgroup/ScoutSuite","last_synced_at":"2025-03-23T10:31:47.135Z","repository":{"id":37910947,"uuid":"155376283","full_name":"nccgroup/ScoutSuite","owner":"nccgroup","description":"Multi-Cloud Security Auditing Tool","archived":false,"fork":false,"pushed_at":"2024-09-30T12:42:23.000Z","size":20530,"stargazers_count":6690,"open_issues_count":247,"forks_count":1060,"subscribers_count":137,"default_branch":"master","last_synced_at":"2024-10-29T11:24:47.206Z","etag":null,"topics":["auditing","aws","azure","cloud","gcp","security"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/nccgroup.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-10-30T11:46:54.000Z","updated_at":"2024-10-28T18:14:05.000Z","dependencies_parsed_at":"2023-09-22T16:22:21.850Z","dependency_job_id":"b34424e9-ced5-4444-b3b2-1d1f8c890c60","html_url":"https://github.com/nccgroup/ScoutSuite","commit_stats":{"total_commits":5188,"total_committers":127,"mean_commits":40.8503937007874,"dds":0.7995373939861218,"last_synced_commit":"7909f2fc6186063e5c9e7ddef8c4d7d1072c8f3d"},"previous_names":[],"tags_count":66,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nccgroup%2FScoutSuite","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nccgroup%2FScoutSuite/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nccgroup%2FScoutSuite/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nccgroup%2FScoutSuite/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/nccgroup","download_url":"https://codeload.github.com/nccgroup/ScoutSuite/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":244787014,"owners_count":20510040,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["auditing","aws","azure","cloud","gcp","security"],"created_at":"2024-07-31T07:00:23.045Z","updated_at":"2025-03-23T10:31:47.102Z","avatar_url":"https://github.com/nccgroup.png","language":"Python","readme":"\u003cp align=\"center\"\u003e\n  \u003cimg src=\"https://user-images.githubusercontent.com/4206926/49877604-10457580-fe26-11e8-92d7-cd876c4f6454.png\" width=350/\u003e\n\u003c/p\u003e\n\n#\n\n[![Workflow](https://github.com/nccgroup/ScoutSuite/workflows/CI%20Workflow/badge.svg)](https://github.com/nccgroup/ScoutSuite/actions)\n[![CodeCov](https://codecov.io/gh/nccgroup/ScoutSuite/branch/master/graph/badge.svg)](https://codecov.io/gh/nccgroup/ScoutSuite)\n\n[![PyPI version](https://badge.fury.io/py/ScoutSuite.svg)](https://badge.fury.io/py/ScoutSuite)\n[![PyPI downloads](https://img.shields.io/pypi/dm/scoutsuite)](https://img.shields.io/pypi/dm/scoutsuite)\n[![Docker Hub](https://img.shields.io/badge/Docker%20Hub-rossja%2Fncc--scoutsuite-blue)](https://hub.docker.com/r/rossja/ncc-scoutsuite/)\n[![Docker Pulls](https://img.shields.io/docker/pulls/rossja/ncc-scoutsuite.svg?style=flat-square)](https://hub.docker.com/r/rossja/ncc-scoutsuite/)\n\n## Description\n\nScout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments. Using the APIs exposed by cloud providers, Scout Suite gathers configuration data for manual inspection and highlights risk areas. Rather than going through dozens of pages on the web consoles, Scout Suite presents a clear view of the attack surface automatically.\n\nScout Suite was designed by security consultants/auditors. It is meant to provide a point-in-time security-oriented view of the cloud account it was run in. Once the data has been gathered, all usage may be performed offline.\n\nThe project team can be contacted at \u003cscoutsuite@nccgroup.com\u003e.\n\n### Cloud Provider Support\n\nThe following cloud providers are currently supported:\n\n- Amazon Web Services\n- Microsoft Azure\n- Google Cloud Platform\n- Alibaba Cloud (alpha)\n- Oracle Cloud Infrastructure (alpha)\n- Kubernetes clusters on a cloud provider (alpha)\n- DigitalOcean Cloud (alpha)\n\n## Installation\n\nRefer to the [wiki](https://github.com/nccgroup/ScoutSuite/wiki/Setup).\n\n## Usage\n\nScout Suite is run through the CLI:\n\n![Running Scout Suite](https://user-images.githubusercontent.com/13310971/78389085-22659d00-75b0-11ea-9f22-ea6fcaa6a1cd.gif)\n\nOnce this has completed, it will generate an HTML report including findings and Cloud account configuration:\n\n![Scout Suite Report](https://user-images.githubusercontent.com/13310971/77861662-342bf680-71e4-11ea-8eed-ccaeb78c5f45.gif)\n\nThe above report was generated by running Scout Suite against https://github.com/nccgroup/sadcloud.\n\nAdditional information can be found in the [wiki](https://github.com/nccgroup/ScoutSuite/wiki). \nThere are also a number of handy [tools](https://github.com/nccgroup/ScoutSuite/tree/master/tools) for automation of common tasks.\n\n\n","funding_links":[],"categories":["Tools of Trade","Cloud platform security","Python","Multi-Cloud","Cloud Security","Uncategorized","Tools","Infrastructure","Security Audit and Mapping Tools","Infrastructure Security","Cloud Resources Inventory","Python (1887)","HarmonyOS","Cloud asset inventory","Policy as Code","Other Awesome Lists","云平台安全","Cloud and Backend Security","Critical tools for CSIRT","文章","其他_安全与渗透","azure","0x02 工具 :hammer_and_wrench:","Инструменты","Tools \u0026 Platforms","Mobile","Security","🔒 Security","Multi-Cloud Security"],"sub_categories":["Security Orchestration, Automation, and Response (SOAR)","Online resources","Uncategorized","CLI","Cloud Security Posture Management","Windows Manager","Threat modelling","Compliance Tools","Subdomain Takeover","安全编排自动化与响应","AWS IoT Security","SOC architecture of detection","资源传输下载","1 云服务工具","Безопасность GCP","Open Source Platforms","Enumeration","Cloud","Professional Security","☸️ Kubernetes","Runtime Security"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnccgroup%2FScoutSuite","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnccgroup%2FScoutSuite","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnccgroup%2FScoutSuite/lists"}