Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/tenable/kaimonkey
KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
https://github.com/tenable/kaimonkey
aws security terraform
Last synced: 7 days ago
JSON representation
KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
- Host: GitHub
- URL: https://github.com/tenable/kaimonkey
- Owner: tenable
- License: apache-2.0
- Created: 2020-10-15T14:04:30.000Z (about 4 years ago)
- Default Branch: master
- Last Pushed: 2023-12-18T10:47:05.000Z (about 1 year ago)
- Last Synced: 2024-12-08T20:04:43.452Z (16 days ago)
- Topics: aws, security, terraform
- Language: HCL
- Homepage:
- Size: 182 KB
- Stars: 96
- Watchers: 10
- Forks: 224
- Open Issues: 6
-
Metadata Files:
- Readme: README.md
- License: LICENSE
- Codeowners: .github/CODEOWNERS
Awesome Lists containing this project
README
# KaiMonkey - Vulnerable Terraform Infrastructure
[![License: Apache 2.0](https://img.shields.io/badge/license-Apache%202-blue)](https://github.com/tenable/KaiMonkey/blob/master/LICENSE)
[![GitHub release](https://img.shields.io/github/release/tenable/KaiMonkey)](https://github.com/tenable/kaimonkey)
[![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg)](https://github.com/tenable/KaiMonkey/pulls)KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
## Introduction
KaiMonkey is an effort to provide a playground of vulnerable infrastructure as code to help analyze & strategize the approach to be taken to secure from code to cloud.
The project can help you get familiar with IaC security issues and verify that your [IaC scanner](https://github.com/tenable/terrascan) is working. The project is maintained and enhanced over time to increase the types of problems represented and to add support for additional IaC and Cloud providers. Contributions are welcome.
To learn more about the security risks in KaiMonkey, you can leverage [Terrascan](https://github.com/tenable/terrascan), our open-source tool to detect compliance and security violations before provisioning the infrastructure. You can also use the [Tenable.cs](https://www.tenable.com/products/tenable-cs/evaluate) platform for an experience that extends beyond the command line with a SaaS console and pre-built integrations into your source code repositories, ticketing systems, CI/CD pipelines, etc.
## Where to get help
* To learn more about Terrascan's features and capabilities, see the documentation portal: https://runterrascan.io
## KaiMonkey Pre-requisites
* Terraform 0.12
* aws cli
* azure cli
* Optional - Terrascan open source tool to scan KaiMonkey## Getting Started with KaiMonkey
1. `git clone https://github.com/tenable/KaiMonkey.git`
2. `cd KaiMonkey/terraform/aws/`
3. `terraform init`
4. `terraform plan` ⟵ optional
5. `terraform apply`## Getting Started with Terrascan
Docker is typically the easiest way to get started because you don't need to install Terrascan on your system. Terrascan builds are also available from the [releases page](https://github.com/tenable/terrascan/releases).
### With Docker
1. `git clone https://github.com/tenable/KaiMonkey.git`
2. `cd KaiMonkey/terraform/aws`
3. `docker run --rm -v "$(pwd):/iac" -w /iac tenable/terrascan scan -t aws`### With native executables
0. Download the appropriate binary from the [releases page](https://github.com/tenable/terrascan/releases).
1. `git clone https://github.com/tenable/KaiMonkey.git`
2. `cd KaiMonkey/terraform/aws`
3. `path/to/terrascan scan -t aws`