aws_recon 0.5.17 → 0.5.21

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 89cbf0e8f8c709236ba6149f60a1240423d23de6fc120abe5359ff11e5d443e9
-  data.tar.gz: d4e93494d56b5aa721a1da29a1f50bce4740b4edbc72380b3da7c43d8ded39ee
+  metadata.gz: 803a1b3bd9dcb2439cc97b5985dbe7e1ba86a35b5033860c1ebaef0f4faa3bb6
+  data.tar.gz: 2fd62c5eea66194c550c5f2bd16e636937033bddecfbfe3e9688f113ab50100b
 SHA512:
-  metadata.gz: 5aac7ceef71d6c839042bf19f1b717dffc74ace6c8eb71dcbe646d25bc563f032f4e575d697f09b17fbe5a288bb36789c565686afdadbaf333c331e3d5ec49b0
-  data.tar.gz: 311d6fdfa70cb4fc208329eb03ac3777faa2b285a30a9b64a3a217599f388afadc262a910099a9b97d10343774c51c9e78dfabcb6860123a0d34dd9ed376a1fd
+  metadata.gz: 28a455a40b01265155c376b74ed2ab5f63106bff99ddfb8da20f83c6fd268c6541e92c353f0acae89936b7c0d62ed4dbaa284c67c609b9836ed313958e07d373
+  data.tar.gz: f5017cc1a333dc1e0a7417ff9569728600c06c67dd2407ace47a82309419f3920dc54bb71f069abe794257f3a65ee8b369468e6c07662d9dfd725e8f6c8ae926

data/aws_recon.gemspec

@@ -23,7 +23,7 @@ Gem::Specification.new do |spec|
   spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
   spec.require_paths = ['lib']
 
-  spec.add_dependency 'aws-sdk', '~> 3.0'
+  spec.add_dependency 'aws-sdk', '~> 3.1'
   spec.add_dependency 'parallel', '~> 1.20.1'
 
   spec.add_development_dependency 'bundler', '~> 2.2.17'

data/lib/aws_recon/collectors/ec2.rb

@@ -98,7 +98,10 @@ class EC2 < Mapper
           struct.type = 'vpc'
           struct.arn = "arn:aws:ec2:#{@region}:#{@account}:vpc/#{vpc.vpc_id}" # no true ARN
           struct.flow_logs = @client
-                             .describe_flow_logs({ filter: [{ name: 'resource-id', values: [vpc.vpc_id] }] })
+                             .describe_flow_logs({ filter: [{
+                                                   name: 'resource-id',
+                                                   values: [vpc.vpc_id]
+                                                 }] })
                              .flow_logs.first.to_h
 
           resources.push(struct.to_h)
@@ -318,8 +321,52 @@ class EC2 < Mapper
           resources.push(struct.to_h)
         end
       end
+
+      #
+      # describe_vpc_endpoints
+      #
+      @client.describe_vpc_endpoints.each_with_index do |response, page|
+        log(response.context.operation_name, page)
+
+        response.vpc_endpoints.each do |point|
+          struct = OpenStruct.new(point.to_h)
+          struct.type = 'vpc_endpoint'
+          struct.arn = "arn:aws:ec2:#{@region}:#{@account}:vpc_endpoint/#{point.vpc_endpoint_id}" # no true ARN
+
+          resources.push(struct.to_h)
+        end
+      end
+
+      #
+      # describe_managed_prefix_lists
+      #
+      begin
+        @client.describe_managed_prefix_lists.each_with_index do |response, page|
+          log(response.context.operation_name, page)
+
+          response.prefix_lists.each do |list|
+            struct = OpenStruct.new(list.to_h)
+            struct.type = 'prefix_list'
+            struct.arn = list.prefix_list_arn
+
+            resources.push(struct.to_h)
+          end
+        end
+      rescue Aws::EC2::Errors::ServiceError => e
+        log_error(e.code)
+
+        raise e unless suppressed_errors.include?(e.code) && !@options.quit_on_exception
+      end
     end
 
     resources
   end
+
+  private
+
+  def suppressed_errors
+    %w[
+      InvalidAction
+    ]
+  end
 end

data/lib/aws_recon/collectors/s3.rb

@@ -53,7 +53,8 @@ class S3 < Mapper
           { func: 'get_bucket_tagging', key: 'tagging', field: nil },
           { func: 'get_bucket_logging', key: 'logging', field: 'logging_enabled' },
           { func: 'get_bucket_versioning', key: 'versioning', field: nil },
-          { func: 'get_bucket_website', key: 'website', field: nil }
+          { func: 'get_bucket_website', key: 'website', field: nil },
+          { func: 'get_bucket_ownership_controls', key: 'ownership_controls', field: 'ownership_controls' }
         ]
 
         operations.each do |operation|
@@ -96,6 +97,7 @@ class S3 < Mapper
       ReplicationConfigurationNotFoundError
       NoSuchPublicAccessBlockConfiguration
       ObjectLockConfigurationNotFoundError
+      OwnershipControlsNotFoundError
     ]
   end
 end

data/lib/aws_recon/services.yaml

@@ -87,7 +87,6 @@
   alias: ses
   excluded_regions:
     - ap-east-1
-    - ap-northeast-3
 - name: CloudWatch
   alias: cloudwatch
 - name: CloudWatchLogs

data/lib/aws_recon/version.rb

@@ -1,3 +1,3 @@
 module AwsRecon
-  VERSION = "0.5.17"
+  VERSION = "0.5.21"
 end

data/readme.md

@@ -37,6 +37,7 @@ AWS Recon handles collection from large accounts by taking advantage of automati
 - [Pinterest](https://www.pinterest.com/)
 - [HackerOne](https://www.hackerone.com/)
 - [MuleSoft](https://www.mulesoft.com/)
+- [Slack](https://slack.com/)
 - [Drata](https://drata.com/)
 
 > ** usage does not imply endorsement

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws_recon
 version: !ruby/object:Gem::Version
-  version: 0.5.17
+  version: 0.5.21
 platform: ruby
 authors:
 - Josh Larsen
@@ -9,7 +9,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2021-09-04 00:00:00.000000000 Z
+date: 2021-12-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk
@@ -17,14 +17,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '3.1'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '3.1'
 - !ruby/object:Gem::Dependency
   name: parallel
   requirement: !ruby/object:Gem::Requirement
@@ -277,7 +277,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.8
+rubygems_version: 3.2.3
 signing_key:
 specification_version: 4
 summary: A multi-threaded AWS security-focused inventory collection tool.