Prowler

その他

 

https://github.com/prowler-cloud/prowler

-- 1. インストール(macOS)

pip install prowler
prowler -v


-- 2. 動作確認(AWS)

prowler aws --list-checks
prowler aws --checks s3_bucket_public_access

prowler aws --list-services
prowler aws --services s3

prowler aws --list-compliance

prowler aws --list-compliance-requirements aws_foundational_security_best_practices_aws --no-banner

ulimit -n 4096

prowler aws --compliance aws_foundational_security_best_practices_aws --no-banner

 

-- 3. 動作確認(GCP)

なぜか下記エラーでうまくいかない★
CRITICAL: No Project IDs can be accessed via Google Credentials.

 

 

-- 4. 動作確認(Azure)

prowler azure --az-cli-auth --list-checks
prowler azure --az-cli-auth --checks storage_blob_public_access_level_is_disabled

prowler azure --az-cli-auth --list-services
prowler azure --az-cli-auth --services storage

prowler azure --list-compliance