Collection of IAM checks for opsbox

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*
Report project as malware

Project description

OpsBox Rego Checks for AWS IAM

This module contains various Rego check plugins related to AWS's Identity and Access Management (IAM) service, including:

  • Unused IAM Policies (unused_policies)
  • Console Access (console_access)
  • IAM Users Without MFA (mfa_enabled)
  • Overdue API Keys (overdue_api_keys)

Plugin Descriptions

Unused IAM Policies Plugin (unused_policies)

Identifies IAM policies with zero attachments to optimize policy management and help reduce unused resources.

Console Access Plugin (console_access)

Identifies IAM users with console access enabled, offering recommendations to enhance security by limiting access to necessary users.

IAM Users Without MFA Plugin (mfa_enabled)

Detects IAM users without Multi-Factor Authentication (MFA) enabled to improve account security.

Overdue API Keys Plugin (overdue_api_keys)

Finds IAM API keys that are overdue, ensuring keys are rotated regularly to enhance security.

Common Configuration

All plugins share the following AWS configuration:

  • aws_access_key_id: AWS access key ID
  • aws_secret_access_key: AWS secret access key
  • aws_region: AWS region (optional)
aws_access_key_id: your_access_key_id
aws_secret_access_key: your_secret_access_key
aws_region: your_aws_region

To access more info about each check, install mkdocs and run mkdocs serve at the root of the package directory.

This will pull up a webpage with more complete documentation.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*

Release history Release notifications | RSS feed

0.2.0

0.1.5

0.1.4

This version

0.1.3

0.1.2

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

opsbox_aws_iam_checks-0.1.3.tar.gz (12.1 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

opsbox_aws_iam_checks-0.1.3-py3-none-any.whl (17.6 kB view details)

Uploaded Python 3

File details

Details for the file opsbox_aws_iam_checks-0.1.3.tar.gz.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.1.3.tar.gz
Algorithm Hash digest
SHA256 6d3662bb8d93d5565b5528aee08ed67a046f3aa36d4c9db85def8287bd190f8d
MD5 696248c6ebec27348c0036339205e840
BLAKE2b-256 79a533f4590a2fc43a21a5775d24127e5a537ec9281d5ee9055275fe71219532

See more details on using hashes here.

File details

Details for the file opsbox_aws_iam_checks-0.1.3-py3-none-any.whl.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.1.3-py3-none-any.whl
Algorithm Hash digest
SHA256 a46af889a79124310ce8580cd9de7646a71c583372b2f5d08ddeae2692cb24f7
MD5 7c7af15ffa1d027904df5efe89216a9e
BLAKE2b-256 2e776125c993196a8684b11dbe2b9a5b6412471f2c9924ee7ac812a6b9a5fbcb

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page