Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/awslabs/amazon-inspector-agent-autodeploy
Lambda job in Python to automatically deploy Inspector agent to newly-launched EC2 instances
https://github.com/awslabs/amazon-inspector-agent-autodeploy
Last synced: about 1 month ago
JSON representation
Lambda job in Python to automatically deploy Inspector agent to newly-launched EC2 instances
- Host: GitHub
- URL: https://github.com/awslabs/amazon-inspector-agent-autodeploy
- Owner: awslabs
- License: apache-2.0
- Created: 2016-08-16T20:43:58.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2018-06-11T22:28:50.000Z (over 6 years ago)
- Last Synced: 2024-08-01T10:16:14.899Z (4 months ago)
- Language: Python
- Size: 11.7 KB
- Stars: 28
- Watchers: 5
- Forks: 21
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-cloud-security - AWS Inspector Agent Autodeploy
README
# Inspector-Agent-Autodeploy
This script is designed to run in AWS Lambda and will not work elsewhere.This is an AWS Lambda job in Python to automatically deploy Inspector agent to newly-launched EC2 instances
The job requires that the EC2 instance have the SSM (EC2 Simple System Manager) agent installed, and the agent must have a role attached with necessary SSM permissions. For details on this, see https://docs.aws.amazon.com/ssm/latest/APIReference/Welcome.html. The easiest way to do this is with userdata at instance launch: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/install-ssm-agent.html
The job is triggered by a CloudWatch event every time a new instance enters the running state. The job checks to make sure that the SSM agent is running. It then uses SSM to install and start the Inspector agent.