The multi cloud security group analyzer

These details have not been verified by PyPI

Project links

Project description

PANOPTES

Panoptes is an automatic security group analyzer focused on reducing the amount of toiling. Mainly focused on AWS, built to be extensible in the future and support the big cloud providers out there.

Prerequisites

For lazy users

There is a Docker image tioxy/panoptes which uses the Dockerfile located in the root of the repository

Python

Python >= 3.6
pip

For AWS usage

AWS CLI installed and configured with your IAM credentials (if you want more customization use Named Profiles)

Installation

Get the latest version of the package from your terminal with pip:

pip install panoptes --upgrade

Getting Started

If you want to see the available options:

panoptesctl aws analyze --help

Generate an AWS analysis with human readable output:

panoptesctl aws analyze --region <YOUR_REGION_CODE>

Generate an AWS analysis with an YML output and a Named Profile from AWS CLI:

panoptesctl aws analyze --region <YOUR_REGION_CODE> --profile <YOUR_PROFILE> --output yml

Check out AWS Regions to see available region codes

Whitelisting

Manually

If you wish to whitelist IPs, not letting the analysis mark them as Unsafe, you can define a sample file with the desired IPs and CIDRs, like the following one:

your_whitelist.txt

111.111.111.111/32
123.123.123.123/32

And then run the analysis with the parameter --whitelist:

panoptesctl aws analyze --region <YOUR_REGION_CODE> --output yml --whitelist /PATH/TO/your_whitelist.txt

Automatically

Panoptes generates automatically a list of IPs which it does not consider harmful from the desired cloud provider.

AWS autogenerated

VPC ranges
Subnet ranges
Private IPs from EC2 VPC Instances
Public IPs from EC2 VPC Instances
Elastic IPs

The Automatic AWS Whitelist feature can't whitelist public and private IP's from EC2 Classic, so make sure that those instances have an Elastic IP attached and their security groups are pointing to the new Elastic IP attached instead of the default EC2 Classic ones.

Project details

These details have not been verified by PyPI

Project links

Release history Release notifications | RSS feed

This version

0.5.0

Sep 28, 2020

0.4.0

Oct 21, 2018

0.3.0

Aug 25, 2018

0.2.3.0

Aug 9, 2018

0.2.2

Apr 8, 2018

0.2.1

Apr 3, 2018

0.2.0

Apr 3, 2018

0.1.1

Apr 1, 2018

0.1.0

Mar 31, 2018

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

panoptes-0.5.0.tar.gz (15.4 kB view details)

Uploaded Sep 28, 2020 Source

Built Distribution

panoptes-0.5.0-py3-none-any.whl (18.6 kB view details)

Uploaded Sep 28, 2020 Python 3

File details

Details for the file panoptes-0.5.0.tar.gz.

File metadata

Download URL: panoptes-0.5.0.tar.gz
Upload date: Sep 28, 2020
Size: 15.4 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: poetry/1.0.10 CPython/3.8.5 Linux/4.14.174+

File hashes

Hashes for panoptes-0.5.0.tar.gz
Algorithm	Hash digest
SHA256	`add398800d5d423941261697a94e3e140f7e4fc40c11dba90bac208e6364f178`
MD5	`2a910ca7785b9eb079ce8e386243e316`
BLAKE2b-256	`6f028f2a6c2fb186d1c1a798b7d2d3e12d905a53162dcab7155e09736dd8a9c1`

See more details on using hashes here.

File details

Details for the file panoptes-0.5.0-py3-none-any.whl.

File metadata

Download URL: panoptes-0.5.0-py3-none-any.whl
Upload date: Sep 28, 2020
Size: 18.6 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: poetry/1.0.10 CPython/3.8.5 Linux/4.14.174+

File hashes

Hashes for panoptes-0.5.0-py3-none-any.whl
Algorithm	Hash digest
SHA256	`d9e83136d16c785a0b1759b343ee4f0df7cab29e3b19da008da9eb2e3a20b810`
MD5	`a783b0e586d38dd5b206a25e23b227bb`
BLAKE2b-256	`757afc333add876ebccdb9146dd4d11b7fef2a76a803ba71f8561686c88b8e8c`