Bug#1008289: ITP: awsome-cis-checker -- CIS Benchmark checker for AWS
Package: wnpp
Severity: wishlist
Owner: Pedro Loami Barbosa dos Santos <pedro@loami.eng.br>
* Package name : awsome-cis-checker
Version : 1.0
Upstream Author : Secforce, David R. @Fiti
* URL : https://github.com/SECFORCE/awsome-cis-checker
* License : MIT
Programming Lang: Python
Description : CIS Benchmark checker for AWS
AWSome CIS Checker is a tool designed to automate the whole process
of checking AWS configurations in accordance with one of the most
widely used industry best practice guides: the CIS Benchmarks.
.
Based on Boto3, an AWS SDK for Python, AWSome CIS Checker uses the
set of credentials provided on a local AWS Client configuration to
verify if the elements of a certain configuration are compliant with
CIS Benchmarks. This covers all the basic checks but also allows for
a “deeper” inspection of the configuration by investigating more
obscure options which could facilitate further attacks vectors.
This package is useful to a pentester, or any other security aware
professional to identify potential security risks within their AWS
environment, by running a checklist based on CIS Benchmarks best
practice guides. Hopefully this tool will increase coverage during
security assessment and also will help sysadmins to understand better
their AWS infrastructure and consequently improve the security of
their environments. More information about the tool and its developers
can be found here: https://www.secforce.com/blog/awsome-cis-checker/
This package will be maintened by me, with support of my mentor/
sponsor and in collaboration with the upstream.
Reply to: