ghndrx/prowler
1
0
Fork 0
mirror of https://github.com/ghndrx/prowler.git synced 2026-02-10 23:05:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
a2806ad86bbad2bc7ebec24e5a06e221f3d539ad
prowler/checks/check_extra712
Toni de la Fuente a2806ad86b populated checks
2018-03-23 10:05:20 -04:00

19 lines
819 B
Plaintext
Raw Blame History

CHECK_ID_check_extra712=""
CHECK_TITLE_check_extra712=""
CHECK_SCORED_check_extra712=""
CHECK_TYPE_check_extra712=""
CHECK_ALTERNATE_check_extra712="check_extra712"
extra712(){
# "Check if Amazon Macie is enabled (Not Scored) (Not part of CIS benchmark)"
textTitle "$ID712" "$TITLE712" "NOT_SCORED" "EXTRA"
textNotice "No API commands available to check if Macie is enabled,"
textNotice "just looking if IAM Macie related permissions exist. "
MACIE_IAM_ROLES_CREATED=$($AWSCLI iam list-roles $PROFILE_OPT --query 'Roles[*].Arn'|grep AWSMacieServiceCustomer|wc -l)
if [[ $MACIE_IAM_ROLES_CREATED -eq 2 ]];then
textOK "Macie related IAM roles exist, so it might be enabled. Check it out manually."
else
textWarn "No Macie related IAM roles found. It is most likely not to be enabled"
fi
}
Reference in New Issue View Git Blame Copy Permalink