Skip to content

KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.

License

Notifications You must be signed in to change notification settings

tenable/KaiMonkey

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

88 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

KaiMonkey - Vulnerable Terraform Infrastructure

License: Apache 2.0 GitHub release PRs Welcome

KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.

Introduction

KaiMonkey is an effort to provide a playground of vulnerable infrastructure as code to help analyze & strategize the approach to be taken to secure from code to cloud.

The project can help you get familiar with IaC security issues and verify that your IaC scanner is working. The project is maintained and enhanced over time to increase the types of problems represented and to add support for additional IaC and Cloud providers. Contributions are welcome.

To learn more about the security risks in KaiMonkey, you can leverage Terrascan, our open-source tool to detect compliance and security violations before provisioning the infrastructure. You can also use the Tenable.cs platform for an experience that extends beyond the command line with a SaaS console and pre-built integrations into your source code repositories, ticketing systems, CI/CD pipelines, etc.

Where to get help

Join our community

KaiMonkey Pre-requisites

  • Terraform 0.12
  • aws cli
  • azure cli
  • Optional - Terrascan open source tool to scan KaiMonkey

Getting Started with KaiMonkey

  1. git clone https://github.com/tenable/KaiMonkey.git
  2. cd KaiMonkey/terraform/aws/
  3. terraform init
  4. terraform plan ⟵ optional
  5. terraform apply

Getting Started with Terrascan

Docker is typically the easiest way to get started because you don't need to install Terrascan on your system. Terrascan builds are also available from the releases page.

With Docker

  1. git clone https://github.com/tenable/KaiMonkey.git
  2. cd KaiMonkey/terraform/aws
  3. docker run --rm -v "$(pwd):/iac" -w /iac tenable/terrascan scan -t aws

With native executables

  1. Download the appropriate binary from the releases page.
  2. git clone https://github.com/tenable/KaiMonkey.git
  3. cd KaiMonkey/terraform/aws
  4. path/to/terrascan scan -t aws

About

KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.

Topics

Resources

License

Security policy

Stars

Watchers

Forks

Languages