ben.carrasco/prowler
1
0
Fork 0
mirror of https://github.com/prowler-cloud/prowler.git synced 2026-03-22 03:08:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,703 Commits 384 Branches 179 Tags
ea60f2d0826db62b5ffff9cde4b19f34889f2e52
Commit Graph

1354 Commits

Author SHA1 Message Date
Andoni Alonso
ea60f2d082 feat(m365): add defenderxdr_critical_asset_management_pending_approvals security check (#10085) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
 2026-02-19 18:49:41 +01:00
Andoni Alonso
e8c0a37d50 feat(m365): add entra_seamless_sso_disabled security check (#10086) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
 2026-02-19 18:19:07 +01:00
Hugo Pereira Brito
48b94b2a9f feat(m365): add defenderxdr_endpoint_privileged_user_exposed_credentials security check (#10084) 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
 2026-02-19 17:52:16 +01:00
Hugo Pereira Brito
20b26bc7d0 feat(m365): add entra_app_registration_no_unused_privileged_permissions security check (#10080) 
Co-authored-by: Daniel Barranquero <74871504+danibarranqueroo@users.noreply.github.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-02-19 17:12:50 +01:00
Hugo Pereira Brito
23e51158e0 feat(m365): add defenderidentity_health_issues_no_open security check (#10087) 2026-02-19 16:58:08 +01:00
Andoni Alonso
d2f4f8c406 feat(image): add registry scan mode with OCI, Docker Hub, and ECR support (#9985) 2026-02-19 12:48:55 +01:00
Pedro Martín
fec86754d8 fix(compliance): remove account_id and location for manual reqs (#10105) 2026-02-18 09:46:19 +01:00
Sandiyo Christan
2c2881b351 fix(oss): use defusedxml to prevent XXE vulnerabilities (#9999) 
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-02-17 12:21:30 +01:00
Hugo Pereira Brito
8438a94203 chore: enhance github documentation and ui placeholder (#9830) 
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-02-17 10:48:53 +01:00
Daniel Barranquero
be516f1dfc feat(openstack): Add 7 New Compute Security Checks (#9944) 2026-02-16 11:46:48 +01:00
Copilot
90e317d39f fix(kms): detect public access for any KMS action, not just kms:* (#10071) 
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: jfagoagas <16007882+jfagoagas@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-02-16 10:12:29 +01:00
kushpatel321
9da0b0c0b1 feat(github): add organization domain verification check (#10033) 
Co-authored-by: Kush321 <kushp2018@gmail.com>
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-02-13 13:41:17 +01:00
Andoni Alonso
aa7490aab4 feat(image): add container image provider for CLI scanning (#9984) 2026-02-12 16:36:48 +01:00
Andoni Alonso
fce1e4f3d2 feat(m365): add defender_safe_attachments_policy_enabled security check (#9833) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-02-11 15:42:11 +01:00
Andoni Alonso
5d490fa185 feat(m365): add defender_atp_safe_attachments_and_docs_configured security check (#9837) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-02-11 15:21:06 +01:00
Andoni Alonso
c5f7e80b20 feat(m365): add defender_safelinks_policy_enabled security check (#9832) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-02-11 13:03:32 +01:00
Andoni Alonso
dde42b6a84 fix(github): combine --repository and --organization flags for scan scoping (#10001) 2026-02-10 14:34:59 +01:00
Hugo Pereira Brito
cb9ab03778 feat(aws): revert Adding check that AWS Auto Scaling group has deletion protection (#9956) 
Co-authored-by: Josema Camacho <hello@josema.xyz>
 2026-02-04 16:53:08 +01:00
Serhii Sokolov
69818abdd0 feat(aws): Adding check that AWS Auto Scaling group has deletion protection (#9928) 
Co-authored-by: Serhii Sokolov <serhii.sokolov@automat-it.com>
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-02-04 13:17:13 +01:00
Hugo Pereira Brito
547c53e07c ci: add duplicate test name checker across providers (#9949) 2026-02-03 12:00:41 +01:00
Daniel Barranquero
e66c9864f5 fix: modify tests files name (#9942) 2026-02-03 08:05:27 +01:00
Daniel Barranquero
08730b4eb5 feat(openstack): add Openstack provider (#9811) 2026-01-29 12:54:18 +01:00
mohd4adil
e97e31c7ca chore(aws): add support for trusted aws accounts in cross account checks for s3, eventbridge bus, eventbridge schema and dynamodb (#9692) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-01-29 09:13:34 +01:00
Kay Agahd
04e2d15dd2 feat(aws): add check rds_instance_extended_support (#9865) 
Co-authored-by: Daniel Barranquero <74871504+danibarranqueroo@users.noreply.github.com>
 2026-01-28 16:49:35 +01:00
Hugo Pereira Brito
80c94faff9 feat(cloudflare): --account-id filter support (#9894) 
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
 2026-01-27 14:18:55 +01:00
Hugo Pereira Brito
6bb8dc6168 feat(cloudflare): extend dns and zone services check coverage (#9426) 
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
 2026-01-27 13:48:26 +01:00
Sergio Garcia
9e7ecb39fa feat(aws): CloudTrail timeline for findings (#9101) 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-01-27 13:00:46 +01:00
Andoni Alonso
3d6aa6c650 feat(m365): add defender_zap_for_teams_enabled security check (#9838) 
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-01-26 17:34:10 +01:00
Andoni Alonso
7f4c02c738 feat(m365): add exchange_shared_mailbox_sign_in_disabled check (#9828) 2026-01-26 16:00:28 +01:00
Hugo Pereira Brito
5784592437 chore(azure): add vault parallelization in keyvault service (#9876) 2026-01-26 13:39:54 +01:00
Andoni Alonso
6cb0edf3e1 feat(aws/codebuild): add check for CodeBreach webhook filter vulnerability (#9840) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-01-22 15:12:24 +01:00
lydiavilchez
963ece9a0b feat(gcp): add check to detect persistent disks on suspended VM instances (#9747) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-01-22 13:38:30 +01:00
lydiavilchez
e76ecfdd4d feat(gcp): add check for OS Login 2FA enabled at project level (#9839) 2026-01-21 15:12:01 +01:00
lydiavilchez
7b839d9f9e feat(gcp): add check to enforce On Host Maintenance set to MIGRATE (#9834) 2026-01-21 09:37:21 +01:00
Hugo Pereira Brito
aa24034ca7 feat(cloudflare): Add bot protection and configuration checks for zones (#9425) 
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
 2026-01-16 12:06:52 +01:00
Josema Camacho
847645543a feat(attack-paths): update boto dependencies for catrography compatibility (#9798) 
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-01-15 13:00:54 +01:00
Hugo Pereira Brito
d4bc6d7531 feat(cloudflare): Add TLS/SSL, records and email security checks for zones (#9424) 
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
 2026-01-15 09:31:27 +01:00
Hugo Pereira Brito
1bf49747ad chore(entra): enhance performance for user_registration_details and user mfa evaluation (#9236) 2026-01-14 14:01:51 +01:00
lydiavilchez
2cde4c939d feat(gcp): add compute_snapshot_not_outdated check (#9774) 2026-01-14 12:35:29 +01:00
Hugo Pereira Brito
9844379d30 chore(cloudflare): rename zones service to zone (#9792) 2026-01-14 11:00:51 +01:00
Hugo Pereira Brito
b0eea61468 feat(cloudflare): Add Cloudflare provider with zones service and critical security checks (#9423) 2026-01-13 11:09:54 +01:00
Lee Trout
429c591819 chore(aws): fixup AWS EC2 SG lib (#9216) 
Co-authored-by: MrCloudSec <hello@mistercloudsec.com>
Co-authored-by: Sergio Garcia <sergargar1@gmail.com>
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-01-12 13:47:37 +01:00
lydiavilchez
62a8540169 feat(gcp): add check to detect Compute Engine configuration changes (#9698) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
 2026-01-12 12:22:15 +01:00
mchennai
05466cff22 test: Add edge case test for s3_bucket_server_access_logging_enabled (#9725) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-01-12 10:06:34 +01:00
Andoni Alonso
27492cbd42 fix(oci): validate credentials before scanning (#9738) 2026-01-08 15:47:26 +01:00
lydiavilchez
3e4458c8f3 feat(gcp): add check to detect VMs with multiple network interfaces (#9702) 2026-01-07 17:04:53 +01:00
lydiavilchez
e12e0dc1aa feat(gcp): add check to ensure Compute Engine disk images are not publicly shared (#9718) 2026-01-07 15:05:36 +01:00
mchennai
4169611a6a test(s3_bucket_server_access_logging_enabled): Add multi-bucket test (#9716) 
Co-authored-by: pedrooot <pedromarting3@gmail.com>
 2026-01-05 11:34:57 +01:00
lydiavilchez
78ce4d8d9b feat(gcp): add check to ensure Managed Instance Groups have autohealing enabled (#9690) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2025-12-30 12:40:47 +01:00
lydiavilchez
144d59de45 feat(gcp): add check to ensure Managed Instance Groups are attached to load balancers (#9695) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2025-12-29 14:16:11 +01:00