Skip to content
/ poro Public

Scan publicly accessible assets on your AWS cloud environment

Notifications You must be signed in to change notification settings

9rnt/poro

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

38 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

poro

Poro art

Description

Scan for publicly accessible assets on your AWS environment

Services covered by this tool:

  • AWS ELB
  • API Gateway
  • S3 Buckets
  • RDS Databases
  • EC2 instances
  • Redshift Databases

Poro also check if a tag you specify is applied to identified public resources using --tag-key and --tag-value arguments.

Prequisites

  • AWS account with Read Only Access to services listed above.
  • Python 3.X
  • requests>=2.22.0
  • boto3>=1.20
  • botocore>= 1.20
  • enlighten>=1

Usage

  • Clone this repository

  • Configure your envionment with active credentials -> aws configure [sso]

  • pip install -r requirements.txt

  • Run python poro.py [-h] [--profile PROFILE] [--export FILE_NAME] [--verbose] [--tag-key KEY] [--tag-value VALUE]

    optional arguments:
    -h, --help          show this help message and exit
    --profile PROFILE   Specify the aws profile (default is default)
    --export FILE_NAME  Specify the file name if you want to expport the results
    --verbose, -v
    --tag-key KEY       Specify the tag key that you want to check if it exists in public resources
    --tag-value VALUE   Specify the tag value that you want to check if it exists in public resources
    

Poro prints the scanning results at the end of it's execution in a json file if no export option is not specified.

About

Scan publicly accessible assets on your AWS cloud environment

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages