CloudTrail auditor

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for bunjiboys from gravatar.com bunjiboys Avatar for probator-build from gravatar.com probator-build

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License (Apache 2.0)
  • Author: Asbjorn Kjaer
  • Tags cloud, security
  • Requires: Python ~=3.7
Classifiers

Project description

probator-auditor-cloudtrail

Please open issues in the Probator repository

Description

This auditor ensures that CloudTrail:

  • Is enabled globally on multi-region
  • Logs to a central location
  • Has SNS/SQS notifications enabled and being sent to the correct queues
  • Regional trails (of our chosen name) are not enabled

Configuration Options

Option name Default Value Type Description
bucket_name None string Name of the S3 bucket to send CloudTrail logs to
bucket_region us-west-2 string Region to create S3 bucket in
cloudtrail_region us-west-2 string Region to create CloudTrail in
enabled False bool Enable the CloudTrail auditor
interval 60 int Run frequency in minutes
resource_tags None list List of tags, in key=value format. Empty value disabled tag management
s3_archive_days 31 int Days after which files go to cold storage. Empty or 0 value to disable
s3_kms_key_id None string KMS Key ID for S3 SSE encryption. If empty, uses the default AWS KMS Key
sns_topic_name None string SNS topic name for CloudTrail log delivery
sqs_queue_arn None string ARN of the SQS queue receiving log notifications
trail_name us-west-2 string Name of the trail to create

Based on the work by Riot Games' Cloud Inquisitor

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for bunjiboys from gravatar.com bunjiboys Avatar for probator-build from gravatar.com probator-build

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License (Apache 2.0)
  • Author: Asbjorn Kjaer
  • Tags cloud, security
  • Requires: Python ~=3.7
Classifiers

Release history Release notifications | RSS feed

This version

1.1.1

1.1.0

1.0.2

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

probator-auditor-cloudtrail-1.1.1.tar.gz (7.9 kB view details)

Uploaded Source

File details

Details for the file probator-auditor-cloudtrail-1.1.1.tar.gz.

File metadata

  • Download URL: probator-auditor-cloudtrail-1.1.1.tar.gz
  • Upload date:
  • Size: 7.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.13.0 pkginfo/1.5.0.1 requests/2.21.0 setuptools/40.8.0 requests-toolbelt/0.9.1 tqdm/4.31.1 CPython/3.7.3

File hashes

Hashes for probator-auditor-cloudtrail-1.1.1.tar.gz
Algorithm Hash digest
SHA256 61e9ff0f8b58e44c5c860462d4cc4d8cc6b4f5a7a692f871f80121e69980f5bb
MD5 9f69ab7faf600a791ceb720203550784
BLAKE2b-256 32d8499c17cc839a2966a3729ee156242aabc314e67f73e15ddc58780edd4471

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page