prismacloud-cli 0.3.12

Prisma Cloud CLI

Prisma Cloud CLI

This is the Prisma Cloud CLI, a command line for Prisma Cloud by Palo Alto Networks

The project is work in progress but can be easily extended to add additional cwpp and cspm commands.

:warning: These scripts have been developed by Prisma Cloud SAs, they are not Supported by Palo Alto Networks. Nevertheless, the maintainers will make a best-effort to address issues, and (of course) contributors are encouraged to submit issues and pull requests.

Getting started

Requirements

• Python >= 3.7
• Pip

Installation

sudo pip3 install prismacloud-cli

Installation on Alpine:

sudo pip3 install --upgrade pip && pip3 install --upgrade setuptools
sudo pip3 install prismacloud-cli

Installation on Ubuntu:

sudo apt update
sudo apt install python3-pip
sudo pip3 install prismacloud-cli

Run the script

Run the pc cli script. If you don't have a config file yet, it will help you to create one.

pc version

This process looks like the screenshot below. the prismacloud-cli asks you for some details, stores it in the credentials file and uses that file when it is already available.

Create your own configuration

Create an access key from Settings then Access key
Get the path to console from Compute tab, System, Utilities

Create a file into home directory .prismacloud/credentials.json with the following structure

{
  "api_endpoint": "__REDACTED__",
  "pcc_api_endpoint": "__REDACTED__",
  "access_key_id": "__REDACTED__",
  "secret_key": "__REDACTED__"
}

You can add additional configurations which you can call by using --config. For example, create a file called ~/.prismacloud/demo.json with the contents above.

Add --config demo to your cli commands.

For example:

pc --config demo -o csv policy  

Examples

pc -o csv policy 
pc -o json policy | jq
pc tags
pc stats dashboard
pc -o json stats dashboard 
pc cloud name
pc --columns defendersSummary.host stats dashboard

Global options

The following global options are available

Options:
  -v, --verbose                   Enables verbose mode.
  -o, --output [text|csv|json|html|columns]
  -c, --config TEXT               Select configuration
                                  ~/.prismacloud/[CONFIGURATION].json
  --columns TEXT                  Select columns for output
  --help                          Show this message and exit.

Use -o columns to get a list of columns available for --columns, e.g.:

pc -o columns images 
pc --columns hostname,repoTag.repo,osDistro -o csv images -l 1 

Use cases

Log4J Impacted Resources

pc -o json stats vulnerabilities --cve CVE-2021-44228 | jq
pc stats vulnerabilities --cve CVE-2021-44228

Search scan reports for images scanned by the Jenkins plugin or twistcli.

pc scans --help
pc --columns entityInfo.repoTag.registry,entityInfo.repoTag.repo,entityInfo.repoTag.tag,entityInfo.vulnerabilitiesCount scans -l 20 -s nginx