Chris Farris
Chris Farris
This plugin produces a failing result for any validated SES domain. SES Domains (vs SES email identities) present a phishing/forgery risk in accounts with loose IAM access or in event...
Adds option to ignore buckets outside the account These plugins were developed by Trek10 under contract to WarnerMedia for release back into the main CloudSploit Scanning Engine. WarnerMedia expressly authorizes...
This PR provides a way to run the engine via AWS Lambda. A new file lambda_index.js is provided which contains the lambda_handler. A SAM CloudFormation Template and Makefile exist for...
This PR will provide the ability to push Antiope Resources to Splunk via the HEC (rather than via scanning the S3 bucket). It includes changes to the S3 Bucket, the...
The default call for support cases is response = client.describe_cases(includeResolvedCases=get_all) where get_all is False. Better to try and use the boto3 params afterTime & beforeTime https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/support.html#Support.Client.describe_cases This will avoid writing...
New Feature of CF - https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticsearch-domain.html
Keeping all resource objects in Resources/ is going to cause that to grow tremendously. Reindexing will become impossible too. I think there will need to be some task that moves...
AWS Only updates the billing data every six hours, but the inventory pulls the data every 30 minutes. The DDB table will get pretty large if we don't do something...
The Grant http://acs.amazonaws.com/groups/global/AuthenticatedUsers represents _all_ AWS Customers and is another form of "Public Bucket". Additionally the WRITE and READ acls were missing from the `query/s3/s3_bucket_restrict_public_write_access.sql` and `query/s3/s3_bucket_restrict_public_read_access.sql `queries