{"id":18284677,"url":"https://github.com/pplu/aws-map","last_synced_at":"2025-04-05T07:31:56.761Z","repository":{"id":66753230,"uuid":"106344527","full_name":"pplu/aws-map","owner":"pplu","description":"Make a network graph of an AWS region","archived":false,"fork":false,"pushed_at":"2019-08-05T07:55:07.000Z","size":133,"stargazers_count":84,"open_issues_count":6,"forks_count":12,"subscribers_count":9,"default_branch":"master","last_synced_at":"2025-03-21T00:32:54.447Z","etag":null,"topics":["alb","aws","ec2","elb","graph","map","network","rds","security-groups","vpc"],"latest_commit_sha":null,"homepage":"","language":"Perl","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/pplu.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2017-10-09T23:09:53.000Z","updated_at":"2024-08-23T16:47:25.000Z","dependencies_parsed_at":"2023-02-22T19:15:19.505Z","dependency_job_id":null,"html_url":"https://github.com/pplu/aws-map","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pplu%2Faws-map","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pplu%2Faws-map/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pplu%2Faws-map/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pplu%2Faws-map/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/pplu","download_url":"https://codeload.github.com/pplu/aws-map/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247305876,"owners_count":20917198,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["alb","aws","ec2","elb","graph","map","network","rds","security-groups","vpc"],"created_at":"2024-11-05T13:14:21.097Z","updated_at":"2025-04-05T07:31:56.746Z","avatar_url":"https://github.com/pplu.png","language":"Perl","readme":"# AWS Network Graph\n\nThis is a small program for getting a hold of the state of your AWS network. It maps out\na VPC region of your choice\n\n## Example\n\n![Graph Example](https://raw.githubusercontent.com/pplu/aws-map/master/examples/graph1.png)\n\n## Installation\n\nOn a recent Ubuntu system these packages are needed\n\n```\napt-get install -y graphviz-dev libxml2-dev libssl-dev carton\ngit clone https://github.com/pplu/aws-map.git\ncd aws-map\ncarton install\n```\n\n## Generating images\n\nYou can scan your infrastructure with two utilities:\n\n```\ncarton exec perl -I lib bin/map_network_sgs eu-west-1\n```\n\nThis will generate three files: `graph.svg`, `graph.dot` and `graph.png`. These\nall have the same contents in different formats SVG, DOT (for graphviz) and PNG\n\nOptionally you can pass a second parameter with the prefix for the the images to\nbe generated. Note that the three extensions will be added to the prefix\n\n## Self-Hosted web server\n\n```\ncarton exec perl -I lib bin/map-webserver eu-west-1\n```\n\nThis will prompt you to visit `http://localhost:3000` where there is a small web application\nthat has a viewer with zooming and panning. This is very convenient to navigate the map \n(specially big ones)\n\n## Understanding the graph\n\nThe generated graph attempts to show you your AWS region from a networking perspetive. It shows you what can talk to what, at an IP level.\n\nThe graphs' nodes are \"things\" that can talk IP (Network hosts, Instances, etc.)\n\n![Network Icon](https://github.com/pplu/aws-map/raw/master/icons/network.png) Network Hosts and Network Ranges.\n\n![Internet Icon](https://github.com/pplu/aws-map/raw/master/icons/internet.png) We have a special icon for 0.0.0.0/0, tagging it as \"The Internet\"\n\n![Instance Icon](https://github.com/pplu/aws-map/raw/master/icons/i.png)...![RDS Icon](https://github.com/pplu/aws-map/raw/master/icons/rds.png) Instances, RDSs, ELBs... (AWS objects) are represented with their respetive icons. If there is no icon the object is just a box.\n\n![Security Group Icon](https://github.com/pplu/aws-map/raw/master/icons/security_group.png) are Security Groups with nothing in them. You may want to evaluate deleting them.\n\nInstances in an autoscaling group will be surrounded in a dotted box with \"autoscaling arrows\" to left and right.\n\nArrows tell you in what direction IP connections (TCP, UDP, ICMP, etc) can flow (what can talk to what). Only incoming connections are graphed (Outbound rules aren't scanned yet). When a port range is not labeled, it means that the ports are TCP (i.e.: \"25\" means TCP port 25. \"25-27\" means TCP ports 25 to 27). If the ports are UDP, they are indicated: \"25-27 UDP\").\n\nWith a quick look at the example graph we can see the following:\n\n![Graph Example](https://raw.githubusercontent.com/pplu/aws-map/master/examples/graph1.png)\n\nThings in 1.1.1.1/32 can talk to the instances via HTTP and SSH.\n\nThe ELB is open to the Internet via HTTPS. It talks to instances via HTTP.\n\nThe instances talk to an RDS on port 3306\n\n## Known limitations\n\nThis tool only evaluates incoming Security Group rules. That means that Subnet ACLs, Routing tables, etc. are not taken into account to calculate if a host can actually talk to another.\n\nWhen you graph a big account, it can take a while. Be patient. Also take into account that the graph can be hard to look at.\n\n## Contributing\n\nContributions are more than welcome. Take a look at the Perl Graphviz module to control the graph better: https://metacpan.org/pod/GraphViz2\n\nThe source code is located here: https://github.com/pplu/aws-map\n\nIssuses can be opened here: https://github.com/pplu/aws-map/issues\n\n## Author\n\nJose Luis Martinez Torres (joseluis.martinez@capside.com)\n\n## Copyright\n\nCopyright (c) 2017 by CAPSiDE\n\nThis program is free software; you can redistribute\nit and/or modify it under the same terms as Perl itself.\n\nThe full text of the license can be found in the\nLICENSE file included with this module.\n\nIcons come from [AWS Simple Icons collection](https://aws.amazon.com/es/architecture/icons/) and are (c) AWS\n\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpplu%2Faws-map","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpplu%2Faws-map","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpplu%2Faws-map/lists"}