Collection of IAM checks for opsbox

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*
Report project as malware

Project description

OpsBox Rego Checks for AWS IAM

This module contains various Rego check plugins related to AWS's Identity and Access Management (IAM) service, including:

  • Unused IAM Policies (unused_policies)
  • Console Access (console_access)
  • IAM Users Without MFA (mfa_enabled)
  • Overdue API Keys (overdue_api_keys)

Plugin Descriptions

Unused IAM Policies Plugin (unused_policies)

Identifies IAM policies with zero attachments to optimize policy management and help reduce unused resources.

Console Access Plugin (console_access)

Identifies IAM users with console access enabled, offering recommendations to enhance security by limiting access to necessary users.

IAM Users Without MFA Plugin (mfa_enabled)

Detects IAM users without Multi-Factor Authentication (MFA) enabled to improve account security.

Overdue API Keys Plugin (overdue_api_keys)

Finds IAM API keys that are overdue, ensuring keys are rotated regularly to enhance security.

Common Configuration

All plugins share the following AWS configuration:

  • aws_access_key_id: AWS access key ID
  • aws_secret_access_key: AWS secret access key
  • aws_region: AWS region (optional)
aws_access_key_id: your_access_key_id
aws_secret_access_key: your_secret_access_key
aws_region: your_aws_region

To access more info about each check, install mkdocs and run mkdocs serve at the root of the package directory.

This will pull up a webpage with more complete documentation.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*

Release history Release notifications | RSS feed

0.2.0

0.1.5

0.1.4

0.1.3

This version

0.1.2

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

opsbox_aws_iam_checks-0.1.2.tar.gz (11.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

opsbox_aws_iam_checks-0.1.2-py3-none-any.whl (17.3 kB view details)

Uploaded Python 3

File details

Details for the file opsbox_aws_iam_checks-0.1.2.tar.gz.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.1.2.tar.gz
Algorithm Hash digest
SHA256 c81a4ab2b834545ca9afbd048c77c42cf1f43beb165b4d6f3ec74b832d64d3c0
MD5 cd6c75637cfd311b4635de176ab74d95
BLAKE2b-256 86cda98cb9d0968b5ec7b52e118a2bef42b2f41bb16db46c67c1af837c1c8198

See more details on using hashes here.

File details

Details for the file opsbox_aws_iam_checks-0.1.2-py3-none-any.whl.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.1.2-py3-none-any.whl
Algorithm Hash digest
SHA256 5f370511be79278d87654252c2dcf236a0a6c759af36ef4276cc2d730c7c6ff8
MD5 2d4498058ab680b586936a39d5c066cd
BLAKE2b-256 ee1bd98d7f551c2134dd69a6ed09962bcebf648be34b2069f7e1c8806a514181

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page