AWS Cloud Configuration Review Using ScoutSuite Tool

User can install ScoutSuite tool using PIP or Git.
Commands are mentioned below.

Via PIP

$ virtualenv -p python3 venv
$ source venv/bin/activate
$ pip install scoutsuite
$ scout — help

Via Git

$ git clone https://github.com/nccgroup/ScoutSuite
$ cd ScoutSuite
$ virtualenv -p python3 venv
$ source venv/bin/activate
$ pip install -r requirements.txt
$ python scout.py — help

For AWS cloud scan : once ScouteSuite is installed, we need to install aws cli to connect ScoutSuite to respective AWS cloud account.

Below are the steps to install aws-cli, Install aws-cli inside ScouteSuite folder.

$curl “https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o “awscliv2.zip”
$unzip awscliv2.zip
$sudo ./aws/install

After aws-cli installation, configure aws account using below command
$aws configure

“AWS Access KEY ID” & “AWS Secret Access Key” is required to configure aws account. Navigate to IAM → Users → Security Credentials and click on “Create access key” to get “AWS Access KEY ID” & “AWS Secret Access Key”.

After configuring aws account run the scan using below command
$python scout.py aws

Once after scan completion, automatically .html report will open up in browser, report looks as shown below.

!! Happy Learning !!