Collection of IAM checks for opsbox

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*
Report project as malware

Project description

OpsBox Rego Checks for AWS IAM

This module contains various Rego check plugins related to AWS's Identity and Access Management (IAM) service, including:

  • Unused IAM Policies (unused_policies)
  • Console Access (console_access)
  • IAM Users Without MFA (mfa_enabled)
  • Overdue API Keys (overdue_api_keys)

Plugin Descriptions

Unused IAM Policies Plugin (unused_policies)

Identifies IAM policies with zero attachments to optimize policy management and help reduce unused resources.

Console Access Plugin (console_access)

Identifies IAM users with console access enabled, offering recommendations to enhance security by limiting access to necessary users.

IAM Users Without MFA Plugin (mfa_enabled)

Detects IAM users without Multi-Factor Authentication (MFA) enabled to improve account security.

Overdue API Keys Plugin (overdue_api_keys)

Finds IAM API keys that are overdue, ensuring keys are rotated regularly to enhance security.

Common Configuration

All plugins share the following AWS configuration:

  • aws_access_key_id: AWS access key ID
  • aws_secret_access_key: AWS secret access key
  • aws_region: AWS region (optional)
aws_access_key_id: your_access_key_id
aws_secret_access_key: your_secret_access_key
aws_region: your_aws_region

To access more info about each check, install mkdocs and run mkdocs serve at the root of the package directory.

This will pull up a webpage with more complete documentation.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*

Release history Release notifications | RSS feed

This version

0.2.0

0.1.5

0.1.4

0.1.3

0.1.2

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

opsbox_aws_iam_checks-0.2.0.tar.gz (12.8 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

opsbox_aws_iam_checks-0.2.0-py3-none-any.whl (18.8 kB view details)

Uploaded Python 3

File details

Details for the file opsbox_aws_iam_checks-0.2.0.tar.gz.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.2.0.tar.gz
Algorithm Hash digest
SHA256 0564fc3fda96e636ad3eb258f26f3b16e4e492a6df89760b9e91a1ce4ee27972
MD5 7caa0c0149e8e390b890c9983c84d0d1
BLAKE2b-256 0472b40d6031106623384b5dac0c158eaa11f0782ea6aca4db9351b63ab8ea32

See more details on using hashes here.

File details

Details for the file opsbox_aws_iam_checks-0.2.0-py3-none-any.whl.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.2.0-py3-none-any.whl
Algorithm Hash digest
SHA256 e14309eaffc20c0c1b1467a9e071f5eb1141b4d210a5c36e315ec0c4bfaa9d4b
MD5 89c83446cbd264782a1f9db89c396470
BLAKE2b-256 1a67b48ce8d5cc92ab7dba0501d319afbf563530ce9ce46adacb9cadfe44d87b

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page