{"id":19259079,"url":"https://github.com/r3drun3/aws-secops","last_synced_at":"2025-09-10T21:31:51.549Z","repository":{"id":137685415,"uuid":"506948521","full_name":"R3DRUN3/aws-secops","owner":"R3DRUN3","description":"aws vulnerability assessment with security hub 🛡️ 🔒","archived":true,"fork":false,"pushed_at":"2022-06-27T17:45:16.000Z","size":27,"stargazers_count":8,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-04-21T10:03:10.077Z","etag":null,"topics":["aws-security-hub","ci-cd","docker","golang"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/R3DRUN3.png","metadata":{"files":{"readme":"readme.md","changelog":null,"contributing":null,"funding":null,"license":"license","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-06-24T09:15:24.000Z","updated_at":"2025-02-14T13:46:46.000Z","dependencies_parsed_at":null,"dependency_job_id":"74c4fd08-2a11-4967-8d5a-a96aa8c5e0de","html_url":"https://github.com/R3DRUN3/aws-secops","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/R3DRUN3/aws-secops","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R3DRUN3%2Faws-secops","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R3DRUN3%2Faws-secops/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R3DRUN3%2Faws-secops/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R3DRUN3%2Faws-secops/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/R3DRUN3","download_url":"https://codeload.github.com/R3DRUN3/aws-secops/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/R3DRUN3%2Faws-secops/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":274528013,"owners_count":25302320,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-10T02:00:12.551Z","response_time":83,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws-security-hub","ci-cd","docker","golang"],"created_at":"2024-11-09T19:15:25.495Z","updated_at":"2025-09-10T21:31:51.543Z","avatar_url":"https://github.com/R3DRUN3.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# AWS SECOPS\n[![Snyk scan and DockerHub push](https://github.com/R3DRUN3/aws-secops/actions/workflows/snyk-scan.yml/badge.svg)](https://github.com/R3DRUN3/aws-secops/actions/workflows/snyk-scan.yml)\n[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)\n\n\n\u003cp\u003e\u003cimg width=\"180\" height=\"180\" src=\"https://github.com/yurijserrano/Github-Profile-Readme-Logos/blob/master/cloud/amazon.svg\"\u003e\u003c/p\u003e\n\n## ABSTRACT\n\nMake use of aws Security Hub service to launch a fast vulnerability assessment against your aws assets.\n\n## Requirements\n\n`aws account` `golang version \u003e= 1.16`\n\n## GitHub Action\nThis repository has associated a GitHub action that does the following: \n\u003cbr\u003e\n* 1 Check for any software vulnerabilities via [Snyk](https://app.snyk.io) api.\n* 2 If no vuln are found, build the docker image on [DockerHub](https://hub.docker.com/).\n\n\n\n## Instructions\n\nClone this folder and run the code:\n\n```console\ngit clone https://github.com/R3DRUN3/aws-secops.git  \\\n\u0026\u0026 cd aws-secops \\\n\u0026\u0026 go run main.go\n```\n\nYou can also build the docker image yourself or download it from [this](https://hub.docker.com/repository/docker/r3drun3/aws-secops) docker hub repo.\n\nTo run as a docker container you need to set some mandatory env vars:\n\n```docker\ndocker run -it --rm \\\n--env AWS_REGION=AWS_REGION_HERE \\\n--env AWS_ACCESS_KEY_ID=AWS_ACCESS_KEY_HERE \\\n--env AWS_SECRET_ACCESS_KEY=AWS_ACCESS_SECRET_HERE \\\nr3drun3/aws-secops:latest\n```\n\nOutput Sample:\n\n```console\n      ___           ___           ___                   ___           ___           ___           ___           ___           ___\n     /\\  \\         /\\__\\         /\\  \\                 /\\  \\         /\\  \\         /\\  \\         /\\  \\         /\\  \\         /\\  \\\n    /::\\  \\       /:/ _/_       /::\\  \\               /::\\  \\       /::\\  \\       /::\\  \\       /::\\  \\       /::\\  \\       /::\\  \\\n   /:/\\:\\  \\     /:/ /\\__\\     /:/\\ \\  \\             /:/\\ \\  \\     /:/\\:\\  \\     /:/\\:\\  \\     /:/\\:\\  \\     /:/\\:\\  \\     /:/\\ \\  \\\n  /::\\~\\:\\  \\   /:/ /:/ _/_   _\\:\\~\\ \\  \\           _\\:\\~\\ \\  \\   /::\\~\\:\\  \\   /:/  \\:\\  \\   /:/  \\:\\  \\   /::\\~\\:\\  \\   _\\:\\~\\ \\  \\\n /:/\\:\\ \\:\\__\\ /:/_/:/ /\\__\\ /\\ \\:\\ \\ \\__\\         /\\ \\:\\ \\ \\__\\ /:/\\:\\ \\:\\__\\ /:/__/ \\:\\__\\ /:/__/ \\:\\__\\ /:/\\:\\ \\:\\__\\ /\\ \\:\\ \\ \\__\\\n \\/__\\:\\/:/  / \\:\\/:/ /:/  / \\:\\ \\:\\ \\/__/         \\:\\ \\:\\ \\/__/ \\:\\~\\:\\ \\/__/ \\:\\  \\  \\/__/ \\:\\  \\ /:/  / \\/__\\:\\/:/  / \\:\\ \\:\\ \\/__/\n      \\::/  /   \\::/_/:/  /   \\:\\ \\:\\__\\            \\:\\ \\:\\__\\    \\:\\ \\:\\__\\    \\:\\  \\        \\:\\  /:/  /       \\::/  /   \\:\\ \\:\\__\\\n      /:/  /     \\:\\/:/  /     \\:\\/:/  /             \\:\\/:/  /     \\:\\ \\/__/     \\:\\  \\        \\:\\/:/  /         \\/__/     \\:\\/:/  /\n     /:/  /       \\::/  /       \\::/  /               \\::/  /       \\:\\__\\        \\:\\__\\        \\::/  /                     \\::/  /\n     \\/__/         \\/__/         \\/__/                 \\/__/         \\/__/         \\/__/         \\/__/                       \\/__/\n\n\nGRAVITY:  LOW\n[1.1 Avoid the use of the root user]\nThe root user has unrestricted access to all resources in the AWS account. It is highly recommended that the use of this user be avoided.For directions on how to fix this issue, consult the AWS Security Hub CIS documentation. ===\u003e https://docs.aws.amazon.com/console/securityhub/standards-cis-1.1/remediation\n\nGRAVITY:  MEDIUM\n[2.5 Ensure AWS Config is enabled]\nAWS Config is a web service that performs configuration management of supported AWS resources within your account and delivers log files to you. The recorded information includes the configuration item (AWS resource), relationships between configuration items (AWS resources), and any configuration changes between resources. It is recommended to enable AWS Config in all regions.For directions on how to fix this issue, consult the AWS Security Hub CIS documentation. ===\u003e https://docs.aws.amazon.com/console/securityhub/standards-cis-2.5/remediation\n\n......................CENSORED...........................\n......................CENSORED...........................\n......................CENSORED...........................\n......................CENSORED...........................\n......................CENSORED...........................\n\n\nVULNERABILITY RECAP: FOUND 15 LOW, 2 MEDIUM AND 0 HIGH\n\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fr3drun3%2Faws-secops","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fr3drun3%2Faws-secops","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fr3drun3%2Faws-secops/lists"}