The CloudSploit by Aqua είναι ένα πρόγραμμα ανοιχτού κώδικα που έχει σχεδιαστεί για να επιτρέπει τον εντοπισμό κενών ασφαλείας σε λογαριασμούς υποδομής cloud, συμπεριλαμβανομένων των Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), Oracle Cloud Infrastructure (OCI) and GitHub.
It is designed to display a range of errors and security risks.
Provides GitHub account security control capabilities. It uses the GitHub APIs to download metadata about a GitHub account (number of repositories, configuration, security settings, etc.) which it then uses to give you security best practices.
Installation
$ git clone git@github.com: cloudsploit / scans.git
$ cd scans
$ npm install
$ ./index.js -h
Architecture
CloudSploit works in two phases. First, it queries the cloud infrastructure APIs for various metadata about your account, i.e. it is a phase “collectionς ”.
Once all the necessary data is collected, the result is transferred to the "scan" phase. The scan uses the collected data to look for possible configurations, risks and other security issues, which are the result.
Application snapshots
For more details on the program, go here.
Hi sir I am a beginner and i wanna start from the basics can u please send me a link to some of your beginner course via my email
Thank you