Collection of IAM checks for opsbox

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*
Report project as malware

Project description

OpsBox Rego Checks for AWS IAM

This module contains various Rego check plugins related to AWS's Identity and Access Management (IAM) service, including:

  • Unused IAM Policies (unused_policies)
  • Console Access (console_access)
  • IAM Users Without MFA (mfa_enabled)
  • Overdue API Keys (overdue_api_keys)

Plugin Descriptions

Unused IAM Policies Plugin (unused_policies)

Identifies IAM policies with zero attachments to optimize policy management and help reduce unused resources.

Console Access Plugin (console_access)

Identifies IAM users with console access enabled, offering recommendations to enhance security by limiting access to necessary users.

IAM Users Without MFA Plugin (mfa_enabled)

Detects IAM users without Multi-Factor Authentication (MFA) enabled to improve account security.

Overdue API Keys Plugin (overdue_api_keys)

Finds IAM API keys that are overdue, ensuring keys are rotated regularly to enhance security.

Common Configuration

All plugins share the following AWS configuration:

  • aws_access_key_id: AWS access key ID
  • aws_secret_access_key: AWS secret access key
  • aws_region: AWS region (optional)
aws_access_key_id: your_access_key_id
aws_secret_access_key: your_secret_access_key
aws_region: your_aws_region

To access more info about each check, install mkdocs and run mkdocs serve at the root of the package directory.

This will pull up a webpage with more complete documentation.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*

Release history Release notifications | RSS feed

0.2.0

0.1.5

This version

0.1.4

0.1.3

0.1.2

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

opsbox_aws_iam_checks-0.1.4.tar.gz (12.1 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

opsbox_aws_iam_checks-0.1.4-py3-none-any.whl (17.6 kB view details)

Uploaded Python 3

File details

Details for the file opsbox_aws_iam_checks-0.1.4.tar.gz.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.1.4.tar.gz
Algorithm Hash digest
SHA256 440f1ea51d33ab527ef209218fb97a7446dcc340656ba6f1aaa50fe2d56314b2
MD5 dfb7528a31c40f65f5ab764fb690e205
BLAKE2b-256 06a8a70042e320d799d8d73b4b2d00d38170e45059cfa148dd457baa380b745c

See more details on using hashes here.

File details

Details for the file opsbox_aws_iam_checks-0.1.4-py3-none-any.whl.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.1.4-py3-none-any.whl
Algorithm Hash digest
SHA256 ac10b902d42f74e2a144952f5ffd5401000bb8e5b53c8ff0d3ceb0a4f11a76c1
MD5 65e3ed8e8a48bf4cf1f42ab3fc98ec11
BLAKE2b-256 e509a19bc5fc4c47c28354ad58eb5377a22e6d1ba316d762e9e5ce52d591eef3

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page