AWS Cloud Configuration Review Using ScoutSuite Tool
User can install ScoutSuite tool using PIP or Git.
Commands are mentioned below.
Via PIP
$ virtualenv -p python3 venv
$ source venv/bin/activate
$ pip install scoutsuite
$ scout — help
Via Git
$ git clone https://github.com/nccgroup/ScoutSuite
$ cd ScoutSuite
$ virtualenv -p python3 venv
$ source venv/bin/activate
$ pip install -r requirements.txt
$ python scout.py — help
For AWS cloud scan : once ScouteSuite is installed, we need to install aws cli to connect ScoutSuite to respective AWS cloud account.
Below are the steps to install aws-cli, Install aws-cli inside ScouteSuite folder.
$curl “https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o “awscliv2.zip”
$unzip awscliv2.zip
$sudo ./aws/install
After aws-cli installation, configure aws account using below command
$aws configure
“AWS Access KEY ID” & “AWS Secret Access Key” is required to configure aws account. Navigate to IAM → Users → Security Credentials and click on “Create access key” to get “AWS Access KEY ID” & “AWS Secret Access Key”.
After configuring aws account run the scan using below command
$python scout.py aws
Once after scan completion, automatically .html report will open up in browser, report looks as shown below.
!! Happy Learning !!