From 10a99aa5ae66f0d86b81bb4ec4f0f45883874ffd Mon Sep 17 00:00:00 2001 From: Marcus Maxwell Date: Thu, 7 Mar 2019 09:11:12 +0000 Subject: [PATCH 1/3] Update README.md -c is only for individual checks, need to use -g for level1 checks. --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 74d57078..ea9ebe9e 100644 --- a/README.md +++ b/README.md @@ -161,7 +161,7 @@ This script has been written in bash using AWS-CLI and it works in Linux and OSX 1. To perform an assessment based on CIS Profile Definitions you can use level1 or level2 with `-c` flag, more information about this [here, page 8](https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf): ```sh - ./prowler -c level1 + ./prowler -g level1 ``` 1. If you want to run Prowler to check multiple AWS accounts in parallel (runs up to 4 simultaneously `-P 4`): From 4c0c6b181b2a9f15907b5d8f449227a8079d398d Mon Sep 17 00:00:00 2001 From: Marcus Maxwell Date: Thu, 7 Mar 2019 09:18:57 +0000 Subject: [PATCH 2/3] Update README.md --- README.md | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index ea9ebe9e..1399bd54 100644 --- a/README.md +++ b/README.md @@ -158,10 +158,15 @@ This script has been written in bash using AWS-CLI and it works in Linux and OSX ./prowler -M mono | aws s3 cp - s3://bucket-name/prowler-report.txt ``` -1. To perform an assessment based on CIS Profile Definitions you can use level1 or level2 with `-c` flag, more information about this [here, page 8](https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf): +1. To perform an assessment based on CIS Profile Definitions you can use + + + + +or level2 with `-c` flag, more information about this [here, page 8](https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf): ```sh - ./prowler -g level1 + ./prowler -g cislevel1 ``` 1. If you want to run Prowler to check multiple AWS accounts in parallel (runs up to 4 simultaneously `-P 4`): @@ -186,7 +191,7 @@ This script has been written in bash using AWS-CLI and it works in Linux and OSX -c specify a check id, to see all available checks use -l option (i.e.: check11 for check 1.1 or extra71 for extra check 71) -g specify a group of checks by id, to see all available group of checks use -L - (i.e.: check3 for entire section 3, level1 for CIS Level 1 Profile Definitions or forensics-ready) + (i.e.: check3 for entire section 3, cislevel1 for CIS Level 1 Profile Definitions or forensics-ready) -f specify an AWS region to run checks against (i.e.: us-west-1) -m specify the maximum number of items to return for long-running requests (default: 100) From 32905637160ba07d928af75d44809617b5674c24 Mon Sep 17 00:00:00 2001 From: Marcus Maxwell Date: Thu, 7 Mar 2019 09:21:15 +0000 Subject: [PATCH 3/3] Update README.md --- README.md | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/README.md b/README.md index 1399bd54..c6a9c3ef 100644 --- a/README.md +++ b/README.md @@ -158,12 +158,7 @@ This script has been written in bash using AWS-CLI and it works in Linux and OSX ./prowler -M mono | aws s3 cp - s3://bucket-name/prowler-report.txt ``` -1. To perform an assessment based on CIS Profile Definitions you can use - - - - -or level2 with `-c` flag, more information about this [here, page 8](https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf): +1. To perform an assessment based on CIS Profile Definitions you can use cislevel1 or cislevel2 with `-c` flag, more information about this [here, page 8](https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf): ```sh ./prowler -g cislevel1