TrailScraper
0
Free
TrailScraper is a command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies. Installation: OSX: $ brew install trailscraper Installation using pip: Requirements: Python >= 3.5 pip $ pip install trailscraper Run directly using docker: $ docker run --rm --env-file <(env | grep AWS_) -v $HOME/.aws:/root/.aws ghcr.io/flosell/trailscraper:latest Usage: Get CloudTrail events matching a filter from CloudTrail API Download some logs Download some logs in organisational trails Find CloudTrail events matching a filter in downloaded logs Generate Policy from some CloudTrail records Extend existing policy by guessing matching actions Find CloudTrail events and generate an IAM Policy Get CloudTrail events matching a filter from CloudTrail API $ trailscraper select --use-cloudtrail-api --filter-assumed-role-arn some-arn --from 'one hour ago' --to 'now' { "Records": [ { "eventTime": "2017-12-11T15:01:51Z", "eventSource": "autoscaling.amazonaws.com", "eventName": "DescribeLaunchConfigurations", ...
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
CloudFox helps gain situational awareness in unfamiliar cloud environments for penetration testers and offensive security professionals.
Free
Automatically compile AWS SCPs for compliant AWS services based on preferred frameworks.
Free
Tool for assessing compliance and running vulnerability scans on Docker images.
Free
Exploit that launches a process on the host from within a Docker container run with the --privileged flag by abusing the Linux cgroup v1 “notification on release” feature.
Free
In-depth analysis and insights on various cloud security topics by Rhino Security Labs team
Free
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Commercial
Security Operations
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Commercial
Application Security
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Commercial
IAM
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security