TrailScraper Logo

TrailScraper

0
Free
Visit Website

TrailScraper is a command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies. Installation: OSX: $ brew install trailscraper Installation using pip: Requirements: Python >= 3.5 pip $ pip install trailscraper Run directly using docker: $ docker run --rm --env-file <(env | grep AWS_) -v $HOME/.aws:/root/.aws ghcr.io/flosell/trailscraper:latest Usage: Get CloudTrail events matching a filter from CloudTrail API Download some logs Download some logs in organisational trails Find CloudTrail events matching a filter in downloaded logs Generate Policy from some CloudTrail records Extend existing policy by guessing matching actions Find CloudTrail events and generate an IAM Policy Get CloudTrail events matching a filter from CloudTrail API $ trailscraper select --use-cloudtrail-api --filter-assumed-role-arn some-arn --from 'one hour ago' --to 'now' { "Records": [ { "eventTime": "2017-12-11T15:01:51Z", "eventSource": "autoscaling.amazonaws.com", "eventName": "DescribeLaunchConfigurations", ...

FEATURES

ALTERNATIVES

A security tool that monitors AWS objects for ownership attribution, detects domain hijacking, and verifies security services.

A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.

A cloud security solution that provides agentless application mapping and vulnerability prioritization based on business impact across cloud environments.

Commercial

Automated script for creating a vulnerable Azure cloud lab to train offensive security skills.

Multi-account cloud security tool for AWS with real-time reporting and auto-remediation capabilities.

A cloud security platform that combines Kubernetes security scanning, runtime monitoring, and cloud security posture management using Kubescape and eBPF technology.

Commercial

Open-source project for detecting security risks in cloud infrastructure accounts with support for AWS, Azure, GCP, OCI, and GitHub.

A CLI tool to simplify the use of AWS Systems Manager Session Manager