Commit Graph

179 Commits

Author SHA1 Message Date
Toni de la Fuente 2faa50c4de fixed typo in TITTLE73 2017-07-18 11:47:56 -04:00
Toni de la Fuente ae274b2fc9 Added check73 S3 buckets open to the AllUsers 2017-07-18 11:45:52 -04:00
Toni de la Fuente 255b6f4ccb Added extra check72
7.2  Ensure there are no EBS Snapshots set as Public (Not Scored) (Not part of CIS benchmark)
2017-07-18 09:15:31 -04:00
Toni de la Fuente 7e3b1bd3ca Merge pull request #7 from Alfresco/master
get changes
2017-07-17 23:10:35 -04:00
Toni de la Fuente 93d5d7295f Merge pull request #73 from MrSecure/extra71-admins
add extra check - look for admins w/o MFA
2017-07-17 23:08:45 -04:00
Toni de la Fuente 435d2ed6fc Merge pull request #72 from MrSecure/check315-fixes
update check315
2017-07-17 22:55:01 -04:00
Ben Allen bb1cb1e081 add extra71 check 2017-07-17 21:43:43 -05:00
Ben Allen 1527e438a1 update check315 to provide more consistent display of topics & subscriptiongs 2017-07-17 21:42:18 -05:00
Toni de la Fuente c2b5ed17c2 Merge pull request #71 from toniblyx/master
fixed issue with check 3.15 issue #70
2017-07-17 22:28:02 -04:00
Toni de la Fuente c2540b2828 fixed issue with check 3.15 2017-07-17 22:27:12 -04:00
Toni de la Fuente fe4dfdb368 Merge pull request #68 from toniblyx/master
Added checks based on CIS profile definitions, issue #64
2017-07-17 21:21:54 -04:00
Toni de la Fuente 39f1411f30 added info about profile definitions 2017-07-17 21:20:05 -04:00
Toni de la Fuente ebf80a6455 Added CIS profile definitions checks
level1 and level2 profile definition checks enabled see https://github.com/Alfresco/prowler/issues/64
2017-07-17 21:14:46 -04:00
Toni de la Fuente ebeb747686 Merge pull request #67 from toniblyx/master
issue #65
2017-07-17 20:50:40 -04:00
Toni de la Fuente e3400b05ba fixed issue #65
added --output json to those places needed to override different default configuration
2017-07-17 20:49:19 -04:00
Toni de la Fuente 90b24ef734 Merge pull request #6 from Alfresco/master
get latest updates
2017-07-13 09:58:07 -04:00
Toni de la Fuente 2de0b5e6b0 Merge pull request #62 from MrSecure/keep-cred-report
Keep cred report
1.2
2017-07-12 11:57:21 -04:00
Ben Allen 2ddf31ca22 Merge in tweaks to keep the credential report, when requested, and fix a notice 2017-07-12 10:34:55 -05:00
Ben Allen b8d2d1cd4b Merge branch 'policy_requirements' into all-updates 2017-07-12 10:32:06 -05:00
Toni de la Fuente fb420d13cc Merge pull request #61 from MrSecure/policy_requirements
Policy requirements
2017-07-12 11:24:18 -04:00
Toni de la Fuente 55ed1273d9 Merge pull request #60 from MrSecure/fail-early
Fail early
2017-07-12 11:15:35 -04:00
Ben Allen edceb17b71 Merge branch 'fail-early' into all-updates 2017-07-12 10:13:07 -05:00
Ben Allen a1e3c09fad Merge branch 'fail-early' into all-updates 2017-07-12 10:06:39 -05:00
Ben Allen 118da69eb5 add headings for incremental policy and bootstrap script 2017-07-11 16:34:25 -05:00
Ben Allen 02a4ab665f fix policy document syntax error in README 2017-07-11 16:34:25 -05:00
Ben Allen c8a2e16a1c add note about saving the key material 2017-07-11 16:34:25 -05:00
Ben Allen ca012ebf76 fix policy document syntax error 2017-07-11 16:34:25 -05:00
Ben Allen 1cbedb1eb6 add incremental policy file; update readme to show use case 2017-07-11 16:34:25 -05:00
Ben Allen 30c3a8aa76 correct typo in permission name 2017-07-11 16:34:25 -05:00
Ben Allen 68f8e08506 add option (-k) to keep the credential report after execution. 2017-07-11 16:24:42 -05:00
Ben Allen 866fe11610 fix typo in function name 2017-07-11 16:23:50 -05:00
Ben Allen f787c57636 improve trap handling 2017-07-11 16:04:27 -05:00
Ben Allen 93b815ecf2 gather count of topics per region, even when unable to list subscribers. 2017-07-11 15:58:50 -05:00
Ben Allen fe99890683 swallow error message for list-subscriptions-by-topic 2017-07-11 15:58:42 -05:00
Ben Allen 9ef23aecca handle permission failure on list-subscriptions-by-topic gracefully 2017-07-11 15:58:34 -05:00
Ben Allen 043fa32aef exit script if there are problems with the credentials. 2017-07-11 15:58:21 -05:00
Ben Allen 5bdd5d8e54 add account number to CSV output. 2017-07-11 15:57:33 -05:00
Ben Allen df47f94cf9 change name of temp file so that it's random
Allows multiple instances of prowler to run in parallel (eg. via xargs
-P ).
Also, add trap handler to remove temp file if interrupted.
2017-07-11 15:57:33 -05:00
Ben Allen 7b6f168d8c update output for check 1.22 to handle multiple users 2017-07-11 15:57:16 -05:00
Ben Allen cf9a73d539 gather count of topics per region, even when unable to list subscribers. 2017-07-11 15:52:21 -05:00
Toni de la Fuente ae6ebfcafd Merge pull request #59 from toniblyx/master
Updated README with shortlist of features and parallel command
2017-07-11 16:51:59 -04:00
Toni de la Fuente 52f88abd33 Update README.md
Added short list of features and parallel command from @MrSecure
2017-07-11 16:50:55 -04:00
Ben Allen 95a4b56575 swallow error message for list-subscriptions-by-topic 2017-07-11 15:47:06 -05:00
Toni de la Fuente 1625bbcf19 Merge pull request #5 from Alfresco/master
get all new changes
2017-07-11 16:39:25 -04:00
Toni de la Fuente 59c8c8a9c5 Merge pull request #58 from MrSecure/parallelism
Parallelism Tweaks
2017-07-11 16:36:42 -04:00
Ben Allen 5c335b28b2 handle permission failure on list-subscriptions-by-topic gracefully 2017-07-11 15:36:35 -05:00
Toni de la Fuente 96ec896179 Merge pull request #57 from MrSecure/check122-multiple-users
update output for check 1.22 to handle multiple users
2017-07-11 16:33:02 -04:00
Ben Allen 8913ca84d0 exit script if there are problems with the credentials. 2017-07-11 14:59:20 -05:00
Ben Allen cdbcac5251 add account number to CSV output. 2017-07-07 16:35:32 -05:00
Ben Allen 1e3985d3b4 change name of temp file so that it's random
Allows multiple instances of prowler to run in parallel (eg. via xargs
-P ).
Also, add trap handler to remove temp file if interrupted.
2017-07-07 16:33:42 -05:00