Skip to content
/ aws-security-group-audit Public

Go script to audit network rules (security groups and NACLs) across all accounts in an AWS Organization

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ezebunandu/aws-security-group-audit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
security-group-audit.go
security-group-audit.go
 
 

Repository files navigation

AWS Network RDP/SSH Audit

Script to audit the security groups and network acls within all accounts in an AWS org for open ssh or rdp access (ingress) from the internet

Assumptions

  • The script will be run from the management account of the AWS org
  • The script will be run with AdministratorAccess permissions
  • There should be OrganizationAccountAccessRole roles in all the member accounts
  • The script user should be assume the `OrganizationAccountAccessRole into the member accounts

How to run

  1. Ensure you have Go installed on your machine. You can download it from here.

  2. Clone the repository to your local machine.

    git clone https://github.com/ezebunandu/aws-security-group-audit

  3. Navigate to the directory containing the script.

    cd aws-security-group-audit

  4. Run the script using the go run command.

    go run security-group-audit.go

Expected Output

About

Go script to audit network rules (security groups and NACLs) across all accounts in an AWS Organization

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages