-
Notifications
You must be signed in to change notification settings - Fork 16
/
Copy pathsecurity_tool_comparison.html
86 lines (64 loc) · 4.15 KB
/
security_tool_comparison.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1">
<meta name="description" content="Table of the auditing checks performed by PacBot, Prowler, Security Monkey, CloudMapper, Trusted Advisor, and AWS Config Rules">
<meta name="keywords" content="aws,security,amazon,enterprise,defense,infosec,cyber">
<title>AWS Security Auditing tools comparison</title>
<link rel="icon" href="https://summitroute.com/favicon.ico" sizes="16x16 32x32 64x64" type="image/vnd.microsoft.icon">
<link rel="stylesheet" href="https://stackpath.bootstrapcdn.com/bootstrap/3.4.0/css/bootstrap.min.css" integrity="sha384-PmY9l28YgO4JwMKbTvgaS7XNZJ30MK9FAZjjzXtlqyZCqBY6X6bXIkM++IkyinN+" crossorigin="anonymous">
<link href="https://fonts.googleapis.com/css?family=Roboto:regular" rel="stylesheet">
<style>
body {
font-family: 'Roboto', sans-serif;
font-weight: 300;
font-style: normal;
}
</style>
<link href="https://unpkg.com/[email protected]/dist/css/tabulator.min.css" rel="stylesheet">
<script type="text/javascript" src="https://unpkg.com/[email protected]/dist/js/tabulator.min.js"></script>
</head>
<body>
<div class="container">
<a href="https://github.com/SummitRoute/aws_research"><img style="position: absolute; top: 0; right: 0; border: 0;" src="https://s3.amazonaws.com/github/ribbons/forkme_right_red_aa0000.png" alt="Fork me on GitHub"></a>
<center>
<h1>AWS Security Auditing tools comparison</h1>
<a href="https://summitroute.com"><img src="https://summitroute.com/img/logo.png" width="200px"></a><br>
Created by Scott Piper of Summit Route, an independent AWS security consultant.
</center>
<br><br>
<p>
<p>Last Update: 2018.10.15
<p><a href="./">Other research</a>
<p>The goal of this table was to identify if one tool was better than the others to use. The conclusion is that due to the sparsity of the table, that the different auditing tools check different things. In some cases the creators (of which I am one, for <a href="https://github.com/duo-labs/cloudmapper">CloudMapper</a>) may have different opinions on the usefulness or priority of some of the checks.
<p>I covered all checks of <a href="https://github.com/tmobile/pacbot">PacBot</a>, <a href="https://github.com/toniblyx/prowler">Prowler</a>, and <a href="https://github.com/Netflix/security_monkey">Security Monkey</a>, and then only listed whether the other tools had those. I did not list all of the additional checks of <a href="https://github.com/duo-labs/cloudmapper">CloudMapper</a>, <a href="https://aws.amazon.com/premiumsupport/technology/trusted-advisor/">Trusted Advisor</a>, or the default <a href="https://aws.amazon.com/config/">AWS Config</a> Rules.
<p>Sorry for the cell data get's clipped, you'll have to look at the json for the full notes (or send me a PR to fix this).
<div id="table"></div>
</div>
<script>
formatcolor = function(cell, formatterParams){
style ="";
if (cell.getValue() != "" && cell.getField() != "type") {
cell.getElement().style = "background-color:#b7e1cd";
};
return cell.getValue();
};
var table = new Tabulator("#table", {
layout:"fitColumns",
layoutColumnsOnNewData:true,
placeholder:"No Data Set",
columns:[
{title:"Rule", field:"rule", sorter:"string", width:200},
{title:"Type", field:"type", formatter:formatcolor, sorter:"string"},
{title:"PacBot", field:"pacbot", formatter:formatcolor, sorter:"string"},
{title:"Prowler", field:"prowler", formatter:formatcolor, sorter:"string"},
{title:"Security Monkey", field:"security_monkey", formatter:formatcolor, sorter:"string"},
{title:"Trusted Advisor", field:"trusted_advisor", formatter:formatcolor, sorter:"string"},
{title:"AWS Config Rule", field:"config_rule", formatter:formatcolor, sorter:"string"},
{title:"CloudMapper", field:"cloudmapper", formatter:formatcolor, sorter:"string"}
],
});
table.setData("./security_tools.json");
</script>