This tool pulls findings from AWS Security Hub and outputs them for consumption by visualization tools. In order to use this tool, you will need to have valid AWS credentials in your environment (or provide a profile for the tool to use).
go get -u github.com/trussworks/security-hub-collectorsecurity-hub-collector is an application for retrieving Security Hub findings for visualization
Usage:
security-hub-collector [OPTIONS]
Application Options:
-o, --output= File to direct output to. (default: SecurityHub-Findings.csv)
-p, --profile= The AWS profile to use. [$AWS_PROFILE]
-r, --region= The AWS region to use. [$AWS_REGION]
-m, --teammap= JSON file containing team to account mappings.
Help Options:
-h, --help Show this help message
You will need to create a team map file with a JSON object that describes your teams based on account numbers. For example:
{
"teams": [
{
"accounts": [
"000000000001",
"000000000011"
],
"name": "My Team"
}
]
}Run the command like this:
security-hub-collector -m teammap.json