Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add Azure support #274

Merged
merged 59 commits into from
Jun 19, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
59 commits
Select commit Hold shift + click to select a range
e8608b1
m365 function `typing`
jonrau1 Feb 11, 2024
fd4876e
updating TOML and `CloudUtils` for Azure
jonrau1 Feb 11, 2024
ea2b63d
building out Azure creds path
jonrau1 Feb 11, 2024
613ff34
wiring up more Azure helpers in `CloudUtils`
jonrau1 Feb 11, 2024
d78e77c
Finalize wiring `EEAuditor` for Azure
jonrau1 Feb 11, 2024
e008dff
fix controller, add AzVM Auditor. HOLY FUCK
jonrau1 Feb 18, 2024
7b24282
`azure_vm_unattached_disks_cmk_encryption_check`
jonrau1 Feb 18, 2024
8d4f907
AzMonitor and AzBackup VM checks
jonrau1 Feb 18, 2024
ba35d75
fixing bad copilot mappings
jonrau1 Feb 18, 2024
56eef78
Add AzSA auditor, retire 3 S3 checks
jonrau1 Feb 18, 2024
2ce89b7
retire more AWS checks
jonrau1 Feb 18, 2024
31ff8aa
expand stroage account auditor
jonrau1 Feb 18, 2024
b95efa2
Add Azure docs, update other docs
jonrau1 Feb 18, 2024
17e69e6
More doc updates for auditor/check counts
jonrau1 Feb 18, 2024
05608ec
Add 3 more Az Storage Acct checks
jonrau1 Feb 18, 2024
8906f4d
Add 3 new AzSA checks, update RDS public
jonrau1 Feb 18, 2024
0aff8f5
Add 2 AzSA checks, add OCSF stdout output
jonrau1 Feb 19, 2024
8a61d8c
ocsf output fixes
jonrau1 Feb 19, 2024
bed5e0a
Add AzSqlServer Auditor with 2 checks
jonrau1 Feb 19, 2024
d3833a4
add 2 more Az SQL server checks
jonrau1 Feb 19, 2024
fc557d2
Bump awscli from 1.32.34 to 1.32.44
dependabot[bot] Feb 19, 2024
f8ee14c
Bump matplotlib from 3.8.2 to 3.8.3
dependabot[bot] Feb 19, 2024
8177a09
Bump boto3 from 1.34.34 to 1.34.44
dependabot[bot] Feb 19, 2024
bc28d38
roadmap & architecture update
jonrau1 Feb 19, 2024
bb5bd4d
2 more SQL checks, asset info fixes
jonrau1 Feb 19, 2024
d432358
Merge pull request #237 from jonrau1/dependabot/pip/boto3-1.34.44
jonrau1 Feb 19, 2024
47c6024
Merge pull request #236 from jonrau1/dependabot/pip/matplotlib-3.8.3
jonrau1 Feb 19, 2024
1ffd3d3
Merge branch 'cis-and-az' into dependabot/pip/awscli-1.32.44
jonrau1 Feb 19, 2024
8707894
Merge pull request #235 from jonrau1/dependabot/pip/awscli-1.32.44
jonrau1 Feb 19, 2024
0ec81f6
add 6 more Az SQL Server checks
jonrau1 Feb 19, 2024
252d3e0
fix asset detail outputs on AzSA + VM
jonrau1 Feb 19, 2024
45521bc
Add MySQL Flex Auditor and 4 checks
jonrau1 Feb 19, 2024
f966fc2
add 5 new MySQL checks, update Azure icons
jonrau1 Feb 19, 2024
f23906d
add Az PSQL auditor with 10 checks
jonrau1 Feb 20, 2024
e255791
update icons, fix some check logic
jonrau1 Feb 20, 2024
5453169
adding type helping, Az NSG auditor & rules
jonrau1 Feb 20, 2024
73068b5
Update NSG auditor docs, lol CIS wants 443!
jonrau1 Feb 20, 2024
56b7171
iconography update
jonrau1 Feb 20, 2024
fbcbccd
add compliance controls to html, needs work
jonrau1 Feb 20, 2024
066ac45
rollback controls in HTML report
jonrau1 Feb 22, 2024
fa085aa
Start fix on finding IDs, add 3 new AzVM checks
jonrau1 Feb 26, 2024
559bd6f
fix patching logic. Add Azure VM auto update check
jonrau1 Feb 26, 2024
1879ef8
fixing more finding IDs for Azure checks
jonrau1 Feb 26, 2024
1592f39
2 new AZ checks, fix docs, update secure boot GCP
jonrau1 Feb 26, 2024
d3f3ea4
migrate bastion check to VNET auditor
jonrau1 Feb 26, 2024
29149db
add 3 new Az VNET checks
jonrau1 Feb 26, 2024
798b302
Add NSG Flow retention check, refactor some ACM
jonrau1 Feb 27, 2024
06f618e
begin MDC auditor w/ 2 checks, update iconography
jonrau1 Feb 27, 2024
08a2ff3
finish MDC auditors, update docs
jonrau1 Feb 28, 2024
bd2af23
fix ASFF `resource.region` (needs to be awsRegion)
jonrau1 Feb 28, 2024
d211165
update ocsf outputs, add AppInsights auditor
jonrau1 Feb 28, 2024
5defc68
update EKS auditor, add 1 more AppInsights check
jonrau1 Feb 28, 2024
d39330e
Bump boto3 from 1.34.34 to 1.34.108
dependabot[bot] May 20, 2024
57c0303
Bump matplotlib from 3.8.2 to 3.9.0
dependabot[bot] May 20, 2024
a22a87c
stage app service auditor...one day
jonrau1 Jun 19, 2024
d768732
Merge branch 'cis-and-az' into dependabot/pip/matplotlib-3.9.0
jonrau1 Jun 19, 2024
238e6c0
Merge pull request #273 from jonrau1/dependabot/pip/matplotlib-3.9.0
jonrau1 Jun 19, 2024
ad3befd
Merge branch 'cis-and-az' into dependabot/pip/boto3-1.34.108
jonrau1 Jun 19, 2024
fa96480
Merge pull request #272 from jonrau1/dependabot/pip/boto3-1.34.108
jonrau1 Jun 19, 2024
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
3 changes: 2 additions & 1 deletion .gitignore
Original file line number Diff line number Diff line change
Expand Up @@ -8,4 +8,5 @@
.aws
*.pyc
eeauditor/processor/outputs/*.svg
eeauditor/processor/outputs/*.html
eeauditor/processor/outputs/*.html
LOCAL_external_providers.toml
44 changes: 21 additions & 23 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -33,11 +33,11 @@ ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, S
- [Workflow](#workflow)
- [Quick Run Down](#quick-run-down-running-running)
- [Configuring ElectricEye](#configuring-electriceye)
- [ElectricEye on Docker](#electriceye-on-docker)
- [Cloud Asset Management](#cloud-asset-management-cam)
- [Supported Services and Checks](#supported-services-and-checks)
- [ElectricEye on Docker](#electriceye-on-docker)
- [Outputs](./docs/outputs/OUTPUTS.md)
- [FAQ](./docs/faq/FAQ.md)
- [Supported Services and Checks](#supported-services-and-checks)
- [Contributing](#contributing)
- [Developer & Testing Guide](./docs/new_checks/DEVELOPER_GUIDE.md)
- [Repository Security](#repository-security)
Expand All @@ -49,7 +49,7 @@ ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, S

## Quick Run Down :running: :running:

- ElectricEye is a Python CLI tool that offers cross-Account, cross-Region, multi-Cloud & SaaS Asset Management, Security Posture Management, and Attack Surface Monitoring capabilities across [AWS, all Partitions supported!](https://aws.amazon.com/), [GCP](https://cloud.google.com/), [Oracle Cloud Infrastructure (OCI)](https://www.oracle.com/cloud/), [ServiceNow](https://www.servicenow.com/), [Microsoft 365 Enterprise (*M365*)](https://www.microsoft.com/en-us/microsoft-365/compare-microsoft-365-enterprise-plans), and [Salesforce (*SFDC*)](https://help.salesforce.com/s), *with more on the way*.
- ElectricEye is a Python CLI tool that offers cross-Account, cross-Region, multi-Cloud & SaaS Asset Management, Security Posture Management, and Attack Surface Monitoring capabilities across [AWS, all Partitions supported!](https://aws.amazon.com/), [GCP](https://cloud.google.com/), [Oracle Cloud Infrastructure (OCI)](https://www.oracle.com/cloud/), [ServiceNow](https://www.servicenow.com/), [Microsoft 365 Enterprise (*M365*)](https://www.microsoft.com/en-us/microsoft-365/compare-microsoft-365-enterprise-plans), [Salesforce (*SFDC*)](https://help.salesforce.com/s), and [Azure](https://portal.azure.com/).

- ElectricEye offers over *1000* Checks against security, resilience, performance, and financial best practices across more than 100 CSP & SaaS services, including atypical services not supported by CSP/SaaS-native asset management tools/views or mainstream CSPM & CNAPP tools.

Expand Down Expand Up @@ -124,12 +124,11 @@ Refer to sub-headings for per-CSP or per-SaaS setup instructions. Go to [Outputs
- [For Amazon Web Services (AWS)](./docs/setup/Setup_AWS.md)
- [For Google Cloud Platform (GCP)](./docs/setup/Setup_GCP.md)
- [For Oracle Cloud Infrastructure](./docs/setup/Setup_OCI.md)
- [For Microsoft Azure](./docs/setup/Setup_Azure.md)

The following Cloud Service Providers are on the Roadmap

- [For Microsoft Azure (*Coming Soon*)](./docs/setup/Setup_Azure.md)
- [For Alibaba Cloud (*Coming Soon*)](./docs/setup/Setup_AlibabaCloud.md)
- [For VMWare Cloud on AWS (*Coming Soon*)](./docs/setup/Setup_VMC.md)

### Software-as-a-Service (SaaS) Providers

Expand All @@ -139,9 +138,24 @@ The following Cloud Service Providers are on the Roadmap

The following SaaS Providers are on the Roadmap

- [For Workday ERP (*Coming Soon*)](./docs/setup/Setup_WorkDay.md)
- [For GitHub (*Coming Soon*)](./docs/setup/Setup_GitHub.md)
- [For Google Workspaces (*Coming Soon*)](./docs/setup/Setup_Google_Workspaces.md)
- [For Snowflake (*Coming Soon*)](./docs/setup/Setup_Snowflake.md)

## Cloud Asset Management (CAM)

For more information on ElectricEye's CAM concept of operations and schema, refer to [the Asset Management documentation](./docs/asset_management/ASSET_MANAGEMENT.md).

## Supported Services and Checks

In total there are:

- **4** Supported Public CSPs: `AWS`, `GCP`, `OCI`, and `Azure`
- **3** Supported SaaS Providers: `ServiceNow`, `M365`, and `Salesforce`
- **1168** ElectricEye Checks
- **171** Supported CSP & SaaS Asset Components across all Services
- **129** ElectricEye Auditors

The tables of supported Services and Checks have been migrated to the respective per-Provider setup documentation linked above in [Configuring ElectricEye](#configuring-electriceye).

## ElectricEye on Docker

Expand Down Expand Up @@ -264,22 +278,6 @@ sudo docker run \

For more configuration information ensure you refer back to the per-Provider setup instructions.

## Cloud Asset Management (CAM)

For more information on ElectricEye's CAM concept of operations and schema, refer to [the Asset Management documentation](./docs/asset_management/ASSET_MANAGEMENT.md).

## Supported Services and Checks

In total there are:

- **3** Supported Public CSPs: `AWS`, `GCP`, `OCI`
- **3** Supported SaaS Providers: `ServiceNow`, `M365`, `Salesforce`
- **1060** ElectricEye Checks
- **161** Supported CSP & SaaS Asset Components across all Services
- **120** ElectricEye Auditors

The tables of supported Services and Checks have been migrated to the respective per-Provider setup documentation linked above in [Configuring ElectricEye](#configuring-electriceye).

## Contributing

Refer to the [Developer Guide](./docs/new_checks/DEVELOPER_GUIDE.md) for instructions on how to produce new checks, for new SaaS and CSP support please open an Issue.
Expand Down
Loading
Loading