This project aims to enhance cloud security by performing compliance checks in AWS environments, addressing key risks identified in Datadog's State of Cloud Security report.
- Long-lived Credentials Check: Identifies and reports on static, non-expiring credentials, a major cause of cloud security breaches【”】.
- Public Access Block Checks: Monitors public access settings in cloud storage services to prevent data leakage【”】.
- MFA Enforcement Verification: Ensures Multi-Factor Authentication is enforced for cloud access, crucial for preventing account takeovers【”】.
- VMs Internet Exposure Audit: Assesses the exposure of virtual machines to the public internet to mitigate the risk of attacks【”】.
- IMDSv2 Enforcement: Validates the enforcement of Instance Metadata Service V2 (IMDSv2) to protect against server-side request forgery (SSRF) attacks【”】.
- Excessively privileged workload: Checks if full permission is granted to any entity and if Access Analyzer is enabled to mitigate possible workloads given excessive privileges”】.
The following is required to run this project properly:
- Clone the repo
- Set the AWS credentials properly
- Execute the
report.shfile
Demo:
This project is distributed under GNU GPLv3. See LICENSE.