Skip to content
/ cloud-scripts Public

Data collection script for public cloud

License

MIT license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

devsecfranklin/cloud-scripts

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

63 Commits
.github
.github
 
 
aws
aws
 
 
az
az
 
 
gcp
gcp
 
 
ibm
ibm
 
 
oci
oci
 
 
openshift
openshift
 
 
report/results
report/results
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 

Repository files navigation

cloud-scripts

Script Validation REUSE build container

These scripts are for data gathering on public cloud infrastructure and configuration.

The easiest way to use this is to clone it into a cloud shell and run from there.

git clone https://github.com/devsecfranklin/cloud-tools.git
cd cloud-tools

Azure

Download the script to your cloud shell in Azure.

wget -O az_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/az/az_check.sh
chmod 755 az_check.sh

Execute the script once for each Resource Group, such as ./az_check.sh -r <RG-Name>.

./az_check.sh -r bmika-app3

Upload the compressed TAR file as directed.

Google Cloud

Download the script to your cloud shell in GCP.

wget -O gcp_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/gcp/gcp_check.sh
chmod 755 gcp_check.sh

Execute the script once for each VPC (such as mgmt, trust, and untrust).

./gcp_check.sh -v ps-devsecops-mgmt
./gcp_check.sh -v ps-devsecops-trust
./gcp_check.sh -v ps-devsecops-untrust

Same as previous example, but in a single line:

for vpc in ps-devsecops-mgmt ps-devsecops-trust ps-devsecops-untrust; do \
    ./gcp_check.sh -v ${vpc}; done

Upload the compressed TAR file as directed.

AWS

Download the script to your cloud shell in AWS.

wget -O aws_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/aws/aws_check.sh
chmod 755 aws_check.sh

Execute the script once for each VPC.

./aws_check.sh -v ps-devsecops-mgmt
./aws_check.sh -v ps-devsecops-trust
./aws_check.sh -v ps-devsecops-untrust

Same as previous example, but in a single line:

for vpc in ps-devsecops-mgmt ps-devsecops-trust ps-devsecops-untrust; do \
    ./aws_check.sh -v ${vpc}; done

OCI

Download the script to your cloud shell in AWS.

wget -O oci_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/oci/oci_check.sh
chmod 755 oci_check.sh

Execute the script once for each Compartment.

Example:

./oci_check.sh -c ocid1.compartment.oc1..aaaaaaaa123412341234asdfasdf

OpenShift

Download the script.

wget -O oci_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/oci/oci_check.sh
chmod 755 oci_check.sh

Execute the script once for the kube-system namespace, and other desired namespaces.

Example:

./openshift_check.sh -n kube-system
./openshift_check.sh -n web-app-test

Results

A small set of test and JSON output is generated from the execution of the scripts. Upload the compressed TAR file as directed.

About

Data collection script for public cloud

Resources

Readme

License

MIT license

Security policy

Security policy
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages