GitHub - SethBodine/audit-tools: Container of Audit Tools for Cloud Security Reviews

What is this for?

This is purely a container image that brings together several tools to simplify the auditing of several cloud services.

Currently serveral packages are configured (small list below), check out the wiki for additional details

Tool	CLI command	Wiki URL
Azure CLI	`az`	Using az cli
GCP Cli	`gcloud`	Using gcloud cli
AWS CLI	`aws`	Using aws cli
Prowler v4	`. /opt/prowler4/prowler4.sh && prowler`	Using Prowler
Steampipe	`steampipe`	Using steampipe
Powerpipe	`powerpipe`	Using powerpipe
ScoutSuite	`. /opt/ScoutSuite/scoutsuite.sh && /opt/ScoutSuite/scout.py`	Using ScoutSuite
testssl	`/opt/testssl.sh/testssl.sh`	Using testssl.sh
trufflehog	`trufflehog`	Using Trufflehog
kubeaudit	`kubeaudit`	Using kubeaudit
AzureHound	`AzureHound`	Using AzureHound
tfsec	`tfsec`	Using tfsec
trivy	`trivy`	Using trivy
kubescape	`kubescape`	Using kubescape
semgrep	`./opt/semgrep/semgrep.sh && semgrep`	Using semgrep
dockerspy	`dockerspy`	Using semgrep

Name		Name	Last commit message	Last commit date
Latest commit History 141 Commits
.github		.github
.dockerignore		.dockerignore
.screenrc		.screenrc
README.md		README.md
awscli-wrapper.sh		awscli-wrapper.sh
dockerfile		dockerfile
mod.pp		mod.pp
motd		motd
motd_updates		motd_updates
pm-init.sh		pm-init.sh
prowler4.sh		prowler4.sh
scoutsuite.sh		scoutsuite.sh
semgrep.sh		semgrep.sh
source-this-script.sh		source-this-script.sh
updatetools		updatetools