Collection of IAM checks for opsbox

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*
Report project as malware

Project description

OpsBox Rego Checks for AWS IAM

This module contains various Rego check plugins related to AWS's Identity and Access Management (IAM) service, including:

  • Unused IAM Policies (unused_policies)
  • Console Access (console_access)
  • IAM Users Without MFA (mfa_enabled)
  • Overdue API Keys (overdue_api_keys)

Plugin Descriptions

Unused IAM Policies Plugin (unused_policies)

Identifies IAM policies with zero attachments to optimize policy management and help reduce unused resources.

Console Access Plugin (console_access)

Identifies IAM users with console access enabled, offering recommendations to enhance security by limiting access to necessary users.

IAM Users Without MFA Plugin (mfa_enabled)

Detects IAM users without Multi-Factor Authentication (MFA) enabled to improve account security.

Overdue API Keys Plugin (overdue_api_keys)

Finds IAM API keys that are overdue, ensuring keys are rotated regularly to enhance security.

Common Configuration

All plugins share the following AWS configuration:

  • aws_access_key_id: AWS access key ID
  • aws_secret_access_key: AWS secret access key
  • aws_region: AWS region (optional)
aws_access_key_id: your_access_key_id
aws_secret_access_key: your_secret_access_key
aws_region: your_aws_region

To access more info about each check, install mkdocs and run mkdocs serve at the root of the package directory.

This will pull up a webpage with more complete documentation.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Opsbox-Team from gravatar.com Opsbox-Team

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python ==3.11.*

Release history Release notifications | RSS feed

0.2.0

This version

0.1.5

0.1.4

0.1.3

0.1.2

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

opsbox_aws_iam_checks-0.1.5.tar.gz (12.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

opsbox_aws_iam_checks-0.1.5-py3-none-any.whl (18.8 kB view details)

Uploaded Python 3

File details

Details for the file opsbox_aws_iam_checks-0.1.5.tar.gz.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.1.5.tar.gz
Algorithm Hash digest
SHA256 3c6f97ac0ed344329384d9b3987082105f3763d57626dd16e1714bf78f09e482
MD5 d20898f613517b109694c3c383353318
BLAKE2b-256 c0cb07548f3ca8721e242b88ca38720175538942c09c61abafc928b6eee4c29e

See more details on using hashes here.

File details

Details for the file opsbox_aws_iam_checks-0.1.5-py3-none-any.whl.

File metadata

File hashes

Hashes for opsbox_aws_iam_checks-0.1.5-py3-none-any.whl
Algorithm Hash digest
SHA256 07071d3f54d6cd89027e67e2f604399a11a79525a9eef895b88f97e5520e5604
MD5 107cce018a4e4e4c05a122f626a417bf
BLAKE2b-256 54f081260344c480995eb16053e42aa4dda234a8ccbd510c027b4bad66731164

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page