Security framework and auditing tool for monitoring and analyzing security configurations across multiple environments
This project is still unstable and, thus, not production-ready. Breaking changes may be introduced to the API or the CLI.
- Check public EC2 instances in all regions.
- Check Security Group policies (e.g. inbound 0.0.0.0/0) in all regions.
- Check User MFAs.
- Check User last login date.
- Check public S3 buckets.
-
API
go get github.com/go-orthrus/orthrus
-
CLI
go get github.com/go-orthrus/orthrus/cmd/orthrus
$ orthrus --help
usage: orthrus [<flags>] <command> [<args> ...]
A security framework and auditing tool for monitoring, analyzing, and alerting on security configurations across multiple environments.
Flags:
--help Show context-sensitive help (also try --help-long and --help-man).
--version Show application version.
-c, --config=CONFIG Path to config file.
--debug Enable debug mode.
--report Report violations
Commands:
help [<command>...]
Show help.
ec2 instances
Check EC2 Instances
ec2 sg
Check Security Group
iam mfa [<flags>]
Check IAM MFA Policies
iam user [<flags>]
Check IAM User Policies
s3
Check S3 Policies.
- See sample configuration file.
orthrusneeds read-only privileges to all AWS services (e.g. EC2, S3, IAM ...etc).
- Refactor into micro-services
- Dockerize
- Add more features
- Add tests
MIT © Peter Benjamin