{"id":13469093,"url":"https://github.com/z0ph/aws-security-toolbox","last_synced_at":"2025-03-26T05:31:33.800Z","repository":{"id":56343602,"uuid":"221552739","full_name":"z0ph/aws-security-toolbox","owner":"z0ph","description":"AWS Security Tools (AST) in a simple Docker container. :package:","archived":false,"fork":false,"pushed_at":"2021-05-20T13:06:05.000Z","size":31,"stargazers_count":283,"open_issues_count":6,"forks_count":25,"subscribers_count":17,"default_branch":"master","last_synced_at":"2024-10-29T22:56:57.785Z","etag":null,"topics":["amazon-web-services","assessments","audit","aws","security"],"latest_commit_sha":null,"homepage":"https://zoph.me","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/z0ph.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null},"funding":{"github":"z0ph","patreon":null,"open_collective":null,"ko_fi":null,"tidelift":null,"community_bridge":null,"liberapay":null,"issuehunt":null,"otechie":null,"custom":null}},"created_at":"2019-11-13T21:13:15.000Z","updated_at":"2024-07-28T21:09:24.000Z","dependencies_parsed_at":"2022-08-15T17:00:40.291Z","dependency_job_id":null,"html_url":"https://github.com/z0ph/aws-security-toolbox","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/z0ph%2Faws-security-toolbox","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/z0ph%2Faws-security-toolbox/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/z0ph%2Faws-security-toolbox/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/z0ph%2Faws-security-toolbox/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/z0ph","download_url":"https://codeload.github.com/z0ph/aws-security-toolbox/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245597445,"owners_count":20641869,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["amazon-web-services","assessments","audit","aws","security"],"created_at":"2024-07-31T15:01:26.197Z","updated_at":"2025-03-26T05:31:33.427Z","avatar_url":"https://github.com/z0ph.png","language":"Shell","funding_links":["https://github.com/sponsors/z0ph"],"categories":["Shell","Shell (473)"],"sub_categories":[],"readme":"# AWS Security Toolbox (AST) :lock:\n\nThis toolbox will bring to you all necessary apps and tooling as a simple portable and preinstalled Docker container for SecOps on AWS, especially for auditing and assessments purpose.\n\nThis will reduce the overhead and the headache of installation these tools and dependencies.\n\n## Included Tools\n\n- [awscli](https://aws.amazon.com/cli/)\n- [CloudMapper](https://github.com/duo-labs/cloudmapper)\n- [CloudTracker](https://github.com/duo-labs/cloudtracker)\n- [prowler](https://github.com/toniblyx/prowler)\n- [ScoutSuite](https://github.com/nccgroup/ScoutSuite)\n- [PMapper](https://github.com/nccgroup/PMapper)\n- [Enumerate-IAM](https://github.com/andresriancho/enumerate-iam)\n\n## Getting Started\n\n### Optional (host machine)\n\n- [aws-vault](https://github.com/99designs/aws-vault)\n\n### Requirements\n\n- docker [macOS](https://docs.docker.com/docker-for-mac/) or [Linux](https://docs.docker.com/install/linux/docker-ce/debian/)\n- `awscli` installed \u0026 configured\n- create `.env` file before building your Docker image locally (see [.env.example](./.env.example)) to set your `DEFAULT_AWS_REGION` and `PROFILE_NAME` (for aws-vault)\n\n## Usage\n\nClone the repository:\n\n        $ git clone https://github.com/z0ph/aws-security-toolbox.git\n\nThere is two options to use this toolbox,\n\n- Option #1 (**Interactive**), you are using local `awscli` with `~/.aws/credentials` populated.\n- Option #2 (`aws-vault`), you want to use your local `aws-vault` installation.\n\n*Info: Working directory within the container: `/opt/secops`*\n\n## Option 1 (Interactive)\n\n        $ ./ast.sh login\n\nWhen you are logged into the shell of the container in interactive mode (`-it`), you will be able to perform your audit/assessment with confidence thanks to pre-populated tools.\n\nExample:\n\n        $ ./opt/secops/prowler/prowler -b | ansi2html -la \u003e /tmp/prowler-report.html\n\n*nb: `/tmp` is mapped to your own (host machine) `/tmp` folder.*\n\n## Option 2 (`aws-vault`)\n\n        $ ./ast.sh exec /opt/secops/prowler/prowler -b -s \u003e report-prod.txt \n\n*nb: if you are not using `default` aws-vault profile name, please modify options in `ast.sh`*\n\n### Optional\n\nif you want to build your own container **locally** to get latest updates from tools maintainers, run the following command.\n\n        $ make build\n\n## License\n\nThis project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details\n\n## Authors\n\n* **Victor GRENU** - *Initial work* - [zoph.io](https://github.com/zoph-io)","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fz0ph%2Faws-security-toolbox","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fz0ph%2Faws-security-toolbox","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fz0ph%2Faws-security-toolbox/lists"}