-
Notifications
You must be signed in to change notification settings - Fork 0
Using Powerpipe
No prep - PowerPipe is installed via an install script (it's just easier that way)
PowerPipe, and Modules are updated at container image start-up
All modules can be found in /opt/Powerpipe/ Review the specific documentation for each module for additional information
PowerPipe replaces Steampipe but requires steampipe to be running.
cd /opt/Powerpipe
steampipe service start
powerpipe benchmark list
powerpipe benchmark list | grep cis
Note: Authentication is not handled by PowerPipe, authentication and subscription/account/project MUST be defined ahead of execution.
powerpipe benchmark run aws_compliance.benchmark.cis_v300 --output pps >[filename].pps
Note: Authentication is not handled by PowerPipe, authentication and subscription/account/project MUST be defined ahead of execution.
powerpipe benchmark run aws_compliance.benchmark.cis_v300 --output html >[filename].html
Note: Authentication is not handled by PowerPipe, authentication and subscription/account/project MUST be defined ahead of execution.
unbuffer powerpipe benchmark run aws_compliance.benchmark.cis_v300 --output txt >[filename].txt
Report files will be generated in the current folder, move these to /output/ and then out of the container
- Excute the following command in the container
powerpipe server - Navigate to http://localhost:9033/
- Select "Open Snapshot" and select pps file exported earlier.