ghndrx/prowler
1
0
Fork 0
mirror of https://github.com/ghndrx/prowler.git synced 2026-02-10 23:05:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 33a53663db Added [extra799] Check if Security Hub is enabled and its standard subscriptions Toni de la Fuente 2020-08-25 19:54:57 +02:00
  • ca471700c2 Added [extra798] Check if Lambda functions have resource-based policy set as Public Toni de la Fuente 2020-08-25 19:06:06 +02:00
  • 03b1d898a6 Added AWS partition variable to the ASFF output format Toni de la Fuente 2020-08-25 16:54:22 +02:00
  • 97e6a80bdc Added AWS partition variable to the ASFF output format Toni de la Fuente 2020-08-25 16:49:20 +02:00
  • 024190dd8a [Check12] Bugfix: Remove $ from grep Joaquin Rinaudo 2020-08-21 10:35:50 +02:00
  • ba87f437d5 This check will identify IAM Policies which allow an IAM Principal (a Role or User) to escalate their privileges due to insecure STS permissions. It is AWS best practice to only use explicitly defined Resources (Role ARNs) for an sts:AssumeRole action. Nick Malcolm 2020-08-20 21:08:00 +12:00
  • cd0b5d29dd Added html to -M in usage Toni de la Fuente 2020-08-18 11:59:53 +02:00
  • c1992ef2a7 Added html to -M in usage Toni de la Fuente 2020-08-18 11:52:49 +02:00
  • 7aa0864bd2 Adding EKS checks to eks-cis and extras group @jonjozwiak Toni de la Fuente 2020-08-05 19:03:55 +02:00
  • 022df45ae1 Adding EKS checks to eks-cis and extras group Jon Jozwiak 2020-08-03 08:02:21 -05:00
  • f5ec2bceda Adding 4 new EKS checks @jonjozwiak Toni de la Fuente 2020-07-31 21:40:38 +02:00
  • 85efe3e342 Fixed extra737 now doesn't fail for keys scheduled for deletion @QuinnStevens Toni de la Fuente 2020-07-31 21:33:06 +02:00
  • 93c89530ff Explicitly set output --json for aws call Quinn Stevens 2020-07-31 20:30:20 +01:00
  • 4a02d54ec1 Add additional GDPR checks to GDPR group @gchib297 Toni de la Fuente 2020-07-31 21:15:30 +02:00
  • a2c92c2e7b Adding 4 EKS checks jonjozwiak 2020-07-31 10:42:16 -05:00
  • 04fae53da5 Add additional GDPR checks gchib 2020-07-24 22:26:09 +05:30
  • 43d95ac18c Set version label PROWLER_VERSION=2.3.0RC3 Toni de la Fuente 2020-07-24 15:22:28 +02:00
  • 19c68980fe fix typo on title group18 Toni de la Fuente 2020-07-24 15:18:46 +02:00
  • 19bd281c78 Added group18 for ISO27001 thanks to @gchib297 issue #637 Toni de la Fuente 2020-07-24 15:16:35 +02:00
  • 9eb6a6d1fe Add additional checks to HIPAA group @gchib297 Toni de la Fuente 2020-07-24 14:58:29 +02:00
  • e58d8cbc8d Don't fail check extra737 for keys scheduled for deletion Quinn Stevens 2020-07-24 12:44:57 +01:00
  • a8026ba3c3 Add additional HIPAA checks gchib 2020-07-23 19:10:17 +05:30
  • 9b1c152607 New check extra793 for SSL listeners on load balancers @jonjozwiak Toni de la Fuente 2020-07-21 16:57:20 +02:00
  • 6ba9be46fb Adding check for SSL load balancers jonjozwiak 2020-07-17 09:59:53 -05:00
  • b3a2f850cf extra792 - skip check if no HTTPS/SSL Listener plus add NLB Support @jonjozwiak Toni de la Fuente 2020-07-17 11:48:28 +02:00
  • 1c970b0387 extra792 skip check if no HTTPS/SSL Listener and add NLB support jonjozwiak 2020-07-16 15:37:43 -05:00
  • 206b675179 Added group for pci-dss as reference Toni de la Fuente 2020-07-13 17:33:07 +02:00
  • c3c5971ff2 Fix listing configurations if default output format is not JSON check119,extra742,extra75 and extra772 @anthirian Toni de la Fuente 2020-07-08 15:48:05 +02:00
  • 1fefc11d8e CFN template helper for role Toni de la Fuente 2020-06-29 15:06:54 +02:00
  • 9732e5be70 Reduce needed actions in additions policy @ Toni de la Fuente 2020-06-29 13:59:19 +02:00
  • d3553b642e Fix listing Elastic IPs if default output format is not JSON Geert Smelt 2020-06-26 12:50:09 +02:00
  • 63d06212db Fix listing CloudFormation stacks if default output format is not JSON Geert Smelt 2020-06-26 11:55:12 +02:00
  • a0c58e1cb2 Fix listing EC2 Security Groups if default output format is not JSON Geert Smelt 2020-06-26 11:25:16 +02:00
  • 0878511abf Fix listing EC2 instances if default output format is not JSON Geert Smelt 2020-06-26 11:16:59 +02:00
  • 01be8520b9 Merge branch 'master' of https://github.com/toniblyx/prowler Toni de la Fuente 2020-06-25 15:16:14 +02:00
  • 9e9535def8 Delete _config.yml Toni de la Fuente 2020-06-25 15:15:59 +02:00
  • 64a617d26d delete _config.yml Toni de la Fuente 2020-06-25 15:15:14 +02:00
  • 4a593df142 Merge branch 'master' of https://github.com/toniblyx/prowler Toni de la Fuente 2020-06-25 15:13:47 +02:00
  • 8686547ebb Allow list All findings in single view in html report Toni de la Fuente 2020-06-25 15:03:45 +02:00
  • 6acde2c843 Set theme jekyll-theme-hacker Toni de la Fuente 2020-06-23 20:18:33 +02:00
  • facc2a7b30 Added script to generate html report from multiple csv outputs Toni de la Fuente 2020-06-23 20:08:12 +02:00
  • dac24b3aa8 Fix issue #624 ID of check_extra792 Toni de la Fuente 2020-06-23 19:34:41 +02:00
  • 84060db013 Added group internet-exposed Toni de la Fuente 2020-06-16 18:01:14 +02:00
  • 2d927f333a Fixed profile and region settings for extra792 - ELB SSL ciphers @jonjozwiak Toni de la Fuente 2020-06-11 09:05:50 +02:00
  • 4db109bb26 Fixing profile and region settings for check_extra792 - ELB SSL ciphers jonjozwiak 2020-06-10 15:46:34 -05:00
  • f1690e8ddc Added old multiaccount sample info to util/other-contrib folder Toni de la Fuente 2020-06-08 13:27:19 +02:00
  • acab5d11ed Update README.md with link to new org-multi-account Toni de la Fuente 2020-06-08 13:23:15 +02:00
  • f42358f361 AWS Organizational Prowler Deployment @tekdj7 Toni de la Fuente 2020-06-08 13:16:42 +02:00
  • 9e2580cc34 removed ansi2html, added -M html Julio Delgado Jr 2020-06-05 12:06:33 -04:00
  • 7a46d23820 Import Security Hub finding into the same region as the related resource @marcjay Toni de la Fuente 2020-06-05 15:07:11 +02:00
  • 4dac3aab55 Import Security Hub finding into the same region as the related resource Marc Jay 2020-06-05 12:55:53 +01:00
  • 26665a4645 Fix extra734 - handle us-east-1 @nimrodkor Toni de la Fuente 2020-06-05 11:09:44 +02:00
  • 94378726bc Fix extra764 - handle us-east-1 & check validity of policy @nimrodkor Toni de la Fuente 2020-06-05 10:48:28 +02:00
  • 4dae0718c1 Fix extra764 - handle us-east-1 & check validity of policy Nimrod Kor 2020-06-04 23:09:24 +03:00
  • ef4d2d33be Fix extra734 - handle us-east-1 Nimrod Kor 2020-06-04 23:08:58 +03:00
  • 99d1de8c15 Improved whitelisting by splitting ignores by newline instead of spaces only @urjitbhatia Toni de la Fuente 2020-05-29 11:40:44 +02:00
  • a58ee251b5 adhoc & switch user in session manager Julio Delgado Jr 2020-05-28 13:43:55 -04:00
  • 2fca2a49fd Split ignores by newline instead of spaces only Urjit Singh Bhatia 2020-05-27 13:58:55 -07:00
  • e69b079220 Fix typo on PR #601 Toni de la Fuente 2020-05-27 10:02:32 +02:00
  • 75cd911b0f Removed ansi2html from Pipfile, Dockerfile and README Toni de la Fuente 2020-05-27 09:55:17 +02:00
  • 2dda3f1ec1 Removed ansi2html from Pipfile Toni de la Fuente 2020-05-27 09:52:34 +02:00
  • 46a8a3ca82 Adding support for IRSA @GabrielCastro Toni de la Fuente 2020-05-27 09:44:52 +02:00
  • 69e2e19e7d Added extra791 and extra792 to group extras Toni de la Fuente 2020-05-27 09:37:10 +02:00
  • b7c8f7a7ef New checks for insecure SSL in CloudFront and ELB @jonjozwiak Toni de la Fuente 2020-05-27 09:32:13 +02:00
  • ad1d4874c4 add fixes for none digest and multi-value digest return Adam 2020-05-26 17:16:14 -04:00
  • 06e81a7f33 Update check_extra792 ASFF resource tye Jon Jozwiak 2020-05-26 09:35:48 -05:00
  • 70337ecd84 Add ASFF resource type Jon Jozwiak 2020-05-26 09:34:37 -05:00
  • df15388577 Adding insecure SSL checks for CloudFront and CLB/ALB jonjozwiak 2020-05-22 17:05:02 -05:00
  • 485b7d90bc Added native html report - upgrade to 21st century ;) Toni de la Fuente 2020-05-25 21:29:29 +02:00
  • 78b26a022a Added native html report - upgrade to 21st century ;) Toni de la Fuente 2020-05-25 21:24:33 +02:00
  • 3e19ed44e5 Feature: add support for IRSA Gabriel Castro 2020-05-25 13:11:24 -04:00
  • 3e6f29c3fd Support Ctrl-C/SIG INT stopping Prowler when running in Docker @marcjay Toni de la Fuente 2020-05-21 18:08:00 +02:00
  • e5ce06e761 Write output files to a directory relative to Prowler @marcjay Toni de la Fuente 2020-05-21 18:06:46 +02:00
  • e3d5b89531 Delete prowler-logo.png Toni de la Fuente 2020-05-21 14:40:06 +02:00
  • 7987ee3011 Added Prowler logo to util/html/ Toni de la Fuente 2020-05-21 14:38:33 +02:00
  • 2b336d08de Added ENV to output when credentials are env variables Toni de la Fuente 2020-05-19 15:06:57 +02:00
  • c7ed6a6693 Improved region handing for extra734 and extra764 Toni de la Fuente 2020-05-19 15:03:42 +02:00
  • 48b6c290b1 Enhance handing region on assume role when default is not us-east-1 Toni de la Fuente 2020-05-11 16:32:43 +02:00
  • e0c2ca2436 Fixed issue #596 for extra71 Toni de la Fuente 2020-05-11 13:21:06 +02:00
  • 38fb596e94 Merge branch 'master' of https://github.com/toniblyx/prowler Toni de la Fuente 2020-05-11 13:16:53 +02:00
  • c79d346961 Fixed issue #596 on check114 Toni de la Fuente 2020-05-11 13:16:38 +02:00
  • 0f9783791b Support Ctrl-C/SIG INT stopping Prowler when running in Docker Marc Jay 2020-05-08 12:34:03 +01:00
  • 802d1151c2 Write output files to a directory relative to Prowler Marc Jay 2020-05-08 11:46:53 +01:00
  • 2a9f6c67a8 Change value of FAIL to FAILED for jsonAsff output type @wildtangent Toni de la Fuente 2020-05-07 17:55:01 +02:00
  • 2a54a180da Change value of FAIL to FAILED for jsonAsff output type (incompatible with AWS Security Hub) Stephen Connor 2020-05-07 14:47:09 +01:00
  • 7ab9962e08 Show failures that are ignored due to whitelisting as skipped checks in JUnit output @marcjay Toni de la Fuente 2020-05-07 09:22:48 +02:00
  • 6279dc1517 Show failures that are ignored due to whitelisting as skipped checks in JUnit output Marc Jay 2020-05-07 01:00:42 +01:00
  • 376cc0ff08 Usage update Toni de la Fuente 2020-05-07 00:48:14 +02:00
  • a37160bf41 Usage update Toni de la Fuente 2020-05-07 00:46:43 +02:00
  • b72501f691 Usage update Toni de la Fuente 2020-05-07 00:45:45 +02:00
  • 733aa439ec Usage update Toni de la Fuente 2020-05-07 00:44:27 +02:00
  • 24fcfb1066 v2.3.0RC Toni de la Fuente 2020-05-06 23:27:30 +02:00
  • 977fe7408e Added whitelist option to README and recuce output for -w Toni de la Fuente 2020-05-06 23:24:42 +02:00
  • f618a16075 Fixed AWS partition variable on generateJsonAsffOutput Toni de la Fuente 2020-05-06 22:57:26 +02:00
  • 68ad3a7461 Support whitelists per check @urjitbhatia Toni de la Fuente 2020-05-06 22:46:57 +02:00
  • 412c9c1e5a added back LIST_OF_CHECKS_AND_GROUPS.md Toni de la Fuente 2020-05-06 22:09:32 +02:00
  • d6033e287d encryption of ebs volume Julio Delgado Jr 2020-05-06 10:55:42 -04:00
  • 3df27862ac Support setting entropy limit for detect-secrets from env BASE64_LIMIT and HEX_LIMIT @yumminhuang Toni de la Fuente 2020-05-06 14:37:23 +02:00
  • bc07c95bda Support setting entropy limit for detect-secrets from env Huang Yaming 2020-05-06 17:53:23 +08:00
  • 8cdf3838a0 Print warnings with the right color code Urjit Singh Bhatia 2020-05-04 16:33:50 -07:00