forked from p15670423/monkey
Improved scoutsuite documentation: fixed incorrect description, added more screenshots and improved phrasing
This commit is contained in:
parent
243b783a7e
commit
c9552f9f44
|
@ -2,22 +2,23 @@
|
||||||
title: "Scoutsuite"
|
title: "Scoutsuite"
|
||||||
date: 2021-03-02T16:23:06+02:00
|
date: 2021-03-02T16:23:06+02:00
|
||||||
draft: false
|
draft: false
|
||||||
|
description: "Scout Suite is an open-source cloud security-auditing tool."
|
||||||
weight: 10
|
weight: 10
|
||||||
---
|
---
|
||||||
|
|
||||||
### What is ScoutSuite?
|
### About ScoutSuite
|
||||||
|
|
||||||
<a href="https://github.com/nccgroup/ScoutSuite" target="_blank" >Scout Suite</a> is an open-source cloud security-auditing tool.
|
<a href="https://github.com/nccgroup/ScoutSuite" target="_blank" >Scout Suite</a> is an open-source cloud security-auditing tool.
|
||||||
It queries the cloud API to gather configuration data of the cloud infrastructure. Based on configuration
|
It queries the cloud API to gather configuration data. Based on configuration
|
||||||
data gathered ScoutSuite shows security issues and risks present in your infrastructure.
|
data gathered, ScoutSuite shows security issues and risks present in your infrastructure.
|
||||||
|
|
||||||
### Which cloud providers are supported?
|
### Supported cloud providers
|
||||||
|
|
||||||
So far the Infection Monkey only supports AWS.
|
Currently, the Infection Monkey only supports AWS.
|
||||||
|
|
||||||
### How to enable ScoutSuite?
|
### Enabling ScoutSuite
|
||||||
|
|
||||||
First of all, Infection Monkey needs access to your cloud API. You can provide access
|
First, Infection Monkey needs access to your cloud API. You can provide access
|
||||||
in the following ways:
|
in the following ways:
|
||||||
|
|
||||||
- Provide access keys:
|
- Provide access keys:
|
||||||
|
@ -30,21 +31,27 @@ in the following ways:
|
||||||
More details about configuring ScoutSuite can be found in the tool itself, by choosing
|
More details about configuring ScoutSuite can be found in the tool itself, by choosing
|
||||||
"Cloud Security Scan" in the "Run Monkey" options.
|
"Cloud Security Scan" in the "Run Monkey" options.
|
||||||
|
|
||||||
After you're done with the setup, make sure that a checkmark appears next to the AWS option to
|
![Cloud scan option in run page](/images/usage/integrations/scoutsuite_run_page.png
|
||||||
verify that ScoutSuite can access the API.
|
"Successful setup indicator")
|
||||||
|
|
||||||
|
After you're done with the setup, make sure that a checkmark appears next to the AWS option. This
|
||||||
|
verifies that ScoutSuite can access the API.
|
||||||
|
|
||||||
![Successfull setup indicator](/images/usage/integrations/scoutsuite_aws_configured.png
|
![Successfull setup indicator](/images/usage/integrations/scoutsuite_aws_configured.png
|
||||||
"Successful setup indicator")
|
"Successful setup indicator")
|
||||||
|
|
||||||
### How to run cloud scan?
|
### Running a cloud security scan
|
||||||
|
|
||||||
If you have successfully configured cloud scan, once the Monkey Agent is run **on the Island**,
|
If you have successfully configured the cloud scan, Infection Monkey will scan
|
||||||
the cloud infrastructure will get scanned. To make this happen, you can simply click on "From Island"
|
your cloud infrastructure when the Monkey Agent is run **on the Island**. You
|
||||||
in the run options. The scope of network scan and other activities you configured the Agent to
|
can simply click on "From Island" in the run options to start the scan. The
|
||||||
do are irrelevant for cloud security scan, except
|
scope of the network scan and other activities you may have configured the Agent
|
||||||
**Monkey Configuration -> System info collectors -> AWS collector** which needs to remain **enabled**.
|
to perform are ignored by the ScoutSuite integration, except **Monkey
|
||||||
|
Configuration -> System info collectors -> AWS collector**, which needs to
|
||||||
|
remain **enabled**.
|
||||||
|
|
||||||
### How to assess cloud scan results?
|
|
||||||
|
### Assessing scan results
|
||||||
|
|
||||||
After the scan is done, ScoutSuite results will be sorted and applied to the ZeroTrust Extended framework
|
After the scan is done, ScoutSuite results will be sorted and applied to the ZeroTrust Extended framework
|
||||||
and displayed as a part of the ZeroTrust report. The main difference between Infection Monkey findings and
|
and displayed as a part of the ZeroTrust report. The main difference between Infection Monkey findings and
|
||||||
|
|
Binary file not shown.
After Width: | Height: | Size: 52 KiB |
Loading…
Reference in New Issue