ghndrx/prowler
1
0
Fork 0
mirror of https://github.com/ghndrx/prowler.git synced 2026-02-10 23:05:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,486 Commits 1 Branch 0 Tags
cb60085779f739e973db034abc319e3167467c17
Commit Graph

1486 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Pepe Fagoaga
cb60085779 New Networking checks for FTP, Telnet, SQL Server and Kafka (#2) 
* feat(aws-securitygroups): include new control to test ingress from 0.0.0.0/0 or ::/0 to FTP ports 20 or 21

* feat(aws-securitygroups): include extra control 7134 in extra group

* feat(aws-securitygroups): include new control to test ingress from 0.0.0.0/0 or ::/0 to Kafka port 9092

* feat(aws-securitygroups): include new control to test ingress from 0.0.0.0/0 or ::/0 to Telnet port 23

* feat(aws-securitygroups): include new control to test ingress from 0.0.0.0/0 or ::/0 to Microsoft SQL Server ports 1433 or 1434

* feat(aws-securitygroups): include extra controls 7135, 7136 and 7137 in extra and internet-exposed groups
 2021-04-22 18:29:12 +02:00
Pepe Fagoaga
2cd8d15410 Merge pull request #1 from toniblyx/master 
Include missing AWS function policy to check AWS Lambda
 2021-03-11 13:33:11 +01:00
Toni de la Fuente
d8473cfe87 Include missing AWS function lambda:GetFunction policy in prowler-additions-policy.json to check AWS Lambda @jfagoagas 
Include missing AWS function lambda:GetFunction policy in prowler-additions-policy.json to check AWS Lambda @jfagoagas
 2021-03-11 13:13:06 +01:00
Pepe Fagoaga
34625ff4e7 fix: include lambda:GetFunction in prowler policy to check AWS Lambda related controls: extra720,extra759,extra760,extra762,extra798 2021-03-11 12:48:32 +01:00
Toni de la Fuente
097ddbb957 Added extra7133 RDS multi-AZ 2021-03-04 20:29:40 +01:00
Toni de la Fuente
db1380422f Added high level architecture 2021-02-25 11:56:45 +01:00
Toni de la Fuente
669cb6f1a9 Added IAM to extra7100 title 2021-02-25 11:56:22 +01:00
Toni de la Fuente
fa2a40f5c0 Fix output on extra731 2021-02-23 18:27:38 +01:00
Toni de la Fuente
80b94eb667 Fix output on extra731 2021-02-23 18:24:26 +01:00
Toni de la Fuente
b633ec8bef Added more checks mappings to ISO27001 group and reordered the list @mario-platt 
Added more checks mappings to ISO27001 group and reordered the list @mario-platt
 2021-02-22 23:21:32 +01:00
Toni de la Fuente
a6ee7922c6 Cloudtrail metrics (check3x) pass if found on any, not every, cloudtrail log @zfLQ2qx2 
Cloudtrail metrics (check3x) pass if found on any, not every, cloudtrail log @zfLQ2qx2
 2021-02-22 23:18:31 +01:00
Toni de la Fuente
2883de016e Ensure check28 only looks at symmetric keys 2021-02-22 23:15:06 +01:00
Toni de la Fuente
f94bf38bdc Merge pull request #752 from toniblyx/revert-742-check28-asymmetric-keys 
Revert "check28 only look at symmetric keys"
 2021-02-22 23:05:52 +01:00
Toni de la Fuente
5d7d9efa69 Revert "check28 only look at symmetric keys" 2021-02-22 23:05:05 +01:00
Toni de la Fuente
1d0887ac89 Make check28 only look at symmetric keys @mdop-wh 
Make check28 only look at symmetric keys @mdop-wh. Asymmetric keys don't support automatic rotation.
 2021-02-22 22:36:53 +01:00
Toni de la Fuente
e0dbfaaa37 Merge branch 'master' into check28-asymmetric-keys 2021-02-22 22:35:32 +01:00
Toni de la Fuente
b68cf876bc Merge pull request #751 from toniblyx/revert-736-universal_epoch_time 
Revert "Implement OS neutral method of converting rfc3339 dates to epoch"
 2021-02-22 21:54:08 +01:00
Toni de la Fuente
97a7471f24 Revert "Implement OS neutral method of converting rfc3339 dates to epoch" 2021-02-22 21:52:19 +01:00
Toni de la Fuente
5d3c526ba7 Implement OS neutral method of converting rfc3339 dates to epoch @zfLQ2qx2 
Implement OS neutral method of converting rfc3339 dates to epoch
 2021-02-22 21:47:06 +01:00
Toni de la Fuente
3d834fae42 Fix typos and add to extras extra7132 2021-02-22 21:44:48 +01:00
Toni de la Fuente
aa3f8a6b5c Add check for RDS enhanced monitoring @mpratsch 
Add check for RDS enhanced monitoring @mpratsch
 2021-02-22 21:41:24 +01:00
Toni de la Fuente
bddf71d5e6 Add access checks for several checks @zfLQ2qx2 
Add access checks for several checks @zfLQ2qx2 (21,22,23,24,25,26,27,28,29,720,725)
 2021-02-22 21:38:39 +01:00
Toni de la Fuente
8a32d8ae5f Force default AWS CLI output issue #696 @Kirizan 
Force default AWS CLI output issue #696 @Kirizan
 2021-02-22 21:31:32 +01:00
Mario Platt
78c2cacfd9 added more checks mappings to ISO27001 group, and reordered the list of comment mappings to go from lower to highest requirements in ISO 2021-02-19 14:23:26 +00:00
C.J
7e6291c51d Cloudtrail metrics pass if found on any, not every, cloudtrail log 2021-02-09 12:29:43 -05:00
Toni de la Fuente
138ece153e Adjusted severity to secrets and Shodan checks 2021-02-05 08:39:02 +01:00
Toni de la Fuente
5d04febf81 Adjusted severity like in Security Hub 2021-02-05 08:34:34 +01:00
Martina Rath
696a776e2e Move extra7132 to rd group and add CHECK_SERVICENAME to check 2021-02-05 08:32:06 +01:00
Martina Rath
073d2ab727 Add check if Enhanced monitoring is enabled on RDS instances 2021-02-05 08:12:11 +01:00
Michael Dop
7e8de8adb8 check28 only look at symmetric keys 
AWS doesn't support the automatic rotation of asymmetric keys
 2021-02-04 10:07:27 -05:00
C.J
de87de3b39 Add access checks for several checks 2021-02-03 17:07:02 -05:00
Toni de la Fuente
e91e2cfee6 Updated extra73 with service name 
Updated extra73 with service name
 2021-02-03 14:55:15 +01:00
Toni de la Fuente
d33c82cd00 Merge branch 'master' into patch-1 2021-02-03 14:54:22 +01:00
Toni de la Fuente
0e3e4a9227 Updated 
added CHECK_SERVICENAME_extra73="s3"
 2021-02-03 14:51:11 +01:00
Toni de la Fuente
bea84ad6d3 Fix title grammar in check_extra73 @CenturionGamer 
Fix title grammar in check_extra73 @CenturionGamer
 2021-02-03 14:49:35 +01:00
Toni de la Fuente
79c4a65ba8 Improved to consider services and severity 2021-02-02 17:36:35 +01:00
Toni de la Fuente
e6d175d62e Check for errors generating credential report, limit loop iterations @zfLQ2qx2 
Check for errors generating credential report, limit loop iterations @zfLQ2qx2
 2021-02-02 15:28:32 +01:00
CenturionGamer
880523880d Update check_extra73 
Fixed the grammar by removing "the" in the description.
 2021-01-28 13:06:44 -05:00
C.J
cbcc8c61a5 Implement OS neutral method of converting rfc3339 dates to epoch 2021-01-26 14:54:27 -05:00
Toni de la Fuente
f9c2e0cf26 Revert PR #718 2021-01-22 16:17:26 +01:00
Toni de la Fuente
6f371744dc Added AWS service name to json, csv and html outputs 2021-01-22 10:56:59 +01:00
Toni de la Fuente
dfdff6e863 Added service name to all checks 2021-01-22 00:23:53 +01:00
Toni de la Fuente
8ed40791ad Added service name to sample check 2021-01-22 00:21:26 +01:00
Toni de la Fuente
f85845c26b Added service name to all checks 2021-01-22 00:19:45 +01:00
Toni de la Fuente
73cac580f3 Added severity field to CSV and HTML output reports 2021-01-21 22:42:40 +01:00
Toni de la Fuente
6bb49fd162 Merge branch 'master' of https://github.com/toniblyx/prowler 2021-01-21 22:40:50 +01:00
Toni de la Fuente
478cb4aa54 Adjusted severity variable 2021-01-21 22:40:25 +01:00
Toni de la Fuente
47aa6998f4 Update check_extra7130 profile parameter was not set @soffensive 
Update check_extra7130 profile parameter was not set @soffensive
 2021-01-18 17:07:00 +01:00
soffensive
f7e4a1f6a4 Update check_extra7130 
Profile was not set
 2021-01-18 16:41:18 +01:00
Toni de la Fuente
b1332f1154 Fix regex in check43 @ilyas28 
Fix regex in check43 @ilyas28
 2021-01-15 13:05:29 +01:00