prowler

mirror of https://github.com/ghndrx/prowler.git synced 2026-02-10 23:05:05 +00:00

Author	SHA1	Message	Date
Toni de la Fuente	d02e1967dc	Improved PublicIP discovery used in Shodan check_extra7102 @as-km Improved PublicIP discovery used in Shodan check_extra7102 @as-km	2021-04-06 13:05:27 +02:00
Mateusz	d77001356a	use describe-network-interfaces instead of describe-addresses in order to get public IPs #768	2021-04-06 12:57:11 +02:00
Toni de la Fuente	e85d8b2a9d	Add check23 to group17_internetexposed group @RyanJarv Add check23 to group17_internetexposed group @RyanJarv	2021-04-06 12:01:52 +02:00
Toni de la Fuente	4f16c8dec5	Merge pull request #766 from toniblyx/revert-765-patch-2 Revert "Add check23 to group17_internetexposed group"	2021-04-05 21:17:35 +02:00
Toni de la Fuente	236ce1fb21	Revert "Add check23 to group17_internetexposed group"	2021-04-05 21:16:58 +02:00
Toni de la Fuente	15230ae6f3	Add check23 to group17_internetexposed @RyanJarv Add check23 to group17_internetexposed @RyanJarv	2021-04-05 21:16:54 +02:00
Ryan Gerstenkorn	6c5776106f	Add check23 to group17_internetexposed group This add's the following check to group17. * 2.3 [check23] Ensure the S3 bucket CloudTrail logs to is not publicly accessible (Scored)	2021-04-05 12:07:08 -07:00
Toni de la Fuente	4100d1dbfd	Replace empty space with '\s' in check43 regex @frannovo Replace empty space with '\s' in check43 regex @frannovo	2021-04-05 15:49:04 +02:00
Toni de la Fuente	abcd299559	Add get_regions function in order to call after assume_role @HG00 Add get_regions function in order to call after assume_role @HG00	2021-04-05 15:35:54 +02:00
Toni de la Fuente	f6049a0597	Merge branch '2.4' into master	2021-04-05 15:27:31 +02:00
HG00	bb397baa8a	Add get_regions function in order to call after assume_role	2021-03-30 11:53:24 +00:00
Toni de la Fuente	c0f3265754	Better handle permissions and errors	2021-03-24 15:41:51 +01:00
Toni de la Fuente	9614b6fc82	Merge branch '2.4' of https://github.com/toniblyx/prowler into 2.4	2021-03-24 15:12:48 +01:00
Toni de la Fuente	a9d56be81a	Added risk, remediation, doc link and caf epic to checks 742 to 7133	2021-03-24 15:12:32 +01:00
Toni de la Fuente	0c4111efda	Moved assume role before listing regions fixes issue #744	2021-03-24 15:11:00 +01:00
Toni de la Fuente	5fb2e496a9	Added risk, remediation, doc link and caf epics to controls 1 to 741 @pablopagani Added risk, remediation, doc link and caf epics to controls 1 to 741 @pablopagani	2021-03-24 14:36:54 +01:00
Pablo Pagani	7b4dae634e	Merge branch '2.4' of https://github.com/pablopagani/prowler into 2.4	2021-03-24 10:23:04 -03:00
Pablo Pagani	35a22a71cd	added risk remediation doc and epics to controls 1 to 741	2021-03-24 10:22:29 -03:00
Toni de la Fuente	21f817b087	Removed textInfo extra information on extra712	2021-03-24 12:30:59 +01:00
Toni de la Fuente	923dc3403b	Added risk, remediation, doc link and epics to first 3 checks @pablopagani Added risk, remediation, doc link and epics to first 3 checks	2021-03-24 09:08:19 +01:00
Pablo Pagani	68d240939c	added risk, remediation doc and epics to firts 3 checks	2021-03-23 15:23:55 -03:00
Pablo Pagani	a9d0649122	added risk, remediation doc and epics to firts 3 checks	2021-03-23 15:19:23 -03:00
Fran Novo	3eeba2ef4e	Replace empty space with '\s' in check43 regex	2021-03-15 17:45:49 +01:00
Toni de la Fuente	806eaa0b98	Updated ProwlerExecRoleAdditionalViewPrivileges Policy with lambda:GetFunction Updated ProwlerExecRoleAdditionalViewPrivileges Policy with lambda:GetFunction	2021-03-11 14:27:52 +01:00
Pepe Fagoaga	2cd8d15410	Merge pull request #1 from toniblyx/master Include missing AWS function policy to check AWS Lambda	2021-03-11 13:33:11 +01:00
Toni de la Fuente	d8473cfe87	Include missing AWS function lambda:GetFunction policy in prowler-additions-policy.json to check AWS Lambda @jfagoagas Include missing AWS function lambda:GetFunction policy in prowler-additions-policy.json to check AWS Lambda @jfagoagas	2021-03-11 13:13:06 +01:00
Pepe Fagoaga	34625ff4e7	fix: include lambda:GetFunction in prowler policy to check AWS Lambda related controls: extra720,extra759,extra760,extra762,extra798	2021-03-11 12:48:32 +01:00
Toni de la Fuente	097ddbb957	Added extra7133 RDS multi-AZ	2021-03-04 20:29:40 +01:00
Toni de la Fuente	db1380422f	Added high level architecture	2021-02-25 11:56:45 +01:00
Toni de la Fuente	669cb6f1a9	Added IAM to extra7100 title	2021-02-25 11:56:22 +01:00
Toni de la Fuente	fa2a40f5c0	Fix output on extra731	2021-02-23 18:27:38 +01:00
Toni de la Fuente	80b94eb667	Fix output on extra731	2021-02-23 18:24:26 +01:00
Toni de la Fuente	b633ec8bef	Added more checks mappings to ISO27001 group and reordered the list @mario-platt Added more checks mappings to ISO27001 group and reordered the list @mario-platt	2021-02-22 23:21:32 +01:00
Toni de la Fuente	a6ee7922c6	Cloudtrail metrics (check3x) pass if found on any, not every, cloudtrail log @zfLQ2qx2 Cloudtrail metrics (check3x) pass if found on any, not every, cloudtrail log @zfLQ2qx2	2021-02-22 23:18:31 +01:00
Toni de la Fuente	2883de016e	Ensure check28 only looks at symmetric keys	2021-02-22 23:15:06 +01:00
Toni de la Fuente	f94bf38bdc	Merge pull request #752 from toniblyx/revert-742-check28-asymmetric-keys Revert "check28 only look at symmetric keys"	2021-02-22 23:05:52 +01:00
Toni de la Fuente	5d7d9efa69	Revert "check28 only look at symmetric keys"	2021-02-22 23:05:05 +01:00
Toni de la Fuente	1d0887ac89	Make check28 only look at symmetric keys @mdop-wh Make check28 only look at symmetric keys @mdop-wh. Asymmetric keys don't support automatic rotation.	2021-02-22 22:36:53 +01:00
Toni de la Fuente	e0dbfaaa37	Merge branch 'master' into check28-asymmetric-keys	2021-02-22 22:35:32 +01:00
Toni de la Fuente	b68cf876bc	Merge pull request #751 from toniblyx/revert-736-universal_epoch_time Revert "Implement OS neutral method of converting rfc3339 dates to epoch"	2021-02-22 21:54:08 +01:00
Toni de la Fuente	97a7471f24	Revert "Implement OS neutral method of converting rfc3339 dates to epoch"	2021-02-22 21:52:19 +01:00
Toni de la Fuente	5d3c526ba7	Implement OS neutral method of converting rfc3339 dates to epoch @zfLQ2qx2 Implement OS neutral method of converting rfc3339 dates to epoch	2021-02-22 21:47:06 +01:00
Toni de la Fuente	3d834fae42	Fix typos and add to extras extra7132	2021-02-22 21:44:48 +01:00
Toni de la Fuente	aa3f8a6b5c	Add check for RDS enhanced monitoring @mpratsch Add check for RDS enhanced monitoring @mpratsch	2021-02-22 21:41:24 +01:00
Toni de la Fuente	bddf71d5e6	Add access checks for several checks @zfLQ2qx2 Add access checks for several checks @zfLQ2qx2 (21,22,23,24,25,26,27,28,29,720,725)	2021-02-22 21:38:39 +01:00
Toni de la Fuente	8a32d8ae5f	Force default AWS CLI output issue #696 @Kirizan Force default AWS CLI output issue #696 @Kirizan	2021-02-22 21:31:32 +01:00
Mario Platt	78c2cacfd9	added more checks mappings to ISO27001 group, and reordered the list of comment mappings to go from lower to highest requirements in ISO	2021-02-19 14:23:26 +00:00
C.J	7e6291c51d	Cloudtrail metrics pass if found on any, not every, cloudtrail log	2021-02-09 12:29:43 -05:00
Toni de la Fuente	138ece153e	Adjusted severity to secrets and Shodan checks	2021-02-05 08:39:02 +01:00
Toni de la Fuente	5d04febf81	Adjusted severity like in Security Hub	2021-02-05 08:34:34 +01:00

1 2 3 4 5 ...

1609 Commits