TrailScraper
TrailScraper is a command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies. Installation: OSX: $ brew install trailscraper Installation using pip: Requirements: Python >= 3.5 pip $ pip install trailscraper Run directly using docker: $ docker run --rm --env-file <(env | grep AWS_) -v $HOME/.aws:/root/.aws ghcr.io/flosell/trailscraper:latest Usage: Get CloudTrail events matching a filter from CloudTrail API Download some logs Download some logs in organisational trails Find CloudTrail events matching a filter in downloaded logs Generate Policy from some CloudTrail records Extend existing policy by guessing matching actions Find CloudTrail events and generate an IAM Policy Get CloudTrail events matching a filter from CloudTrail API $ trailscraper select --use-cloudtrail-api --filter-assumed-role-arn some-arn --from 'one hour ago' --to 'now' { "Records": [ { "eventTime": "2017-12-11T15:01:51Z", "eventSource": "autoscaling.amazonaws.com", "eventName": "DescribeLaunchConfigurations", ...
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A cloud security solution that provides agentless application mapping and vulnerability prioritization based on business impact across cloud environments.
An open-source security tool for AWS, Azure, Google Cloud, and Kubernetes security assessments and audits.
Lists AWS resources using the AWS Cloud Control API and writes them to a JSON output file.
A workload policy enforcement tool for Kubernetes with various supported policies and configuration options.
A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.
A tool for discovering company infrastructure and apps on major cloud providers, beneficial for bug bounty hunters and penetration testers.
Comprehensive suite of tools and resources by Microsoft Azure for ensuring security and protection of data and applications in the cloud.
Show the history and changes between configuration versions of AWS resources
Cloud Security Suite (cs-suite) - Version 3.0 Usage for cloud security audits on AWS, GCP, Azure, and DigitalOcean.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.