aws_recon 0.5.6 → 0.5.11
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/Dockerfile +1 -1
- data/aws_recon.gemspec +6 -6
- data/lib/aws_recon/aws_recon.rb +3 -3
- data/lib/aws_recon/collectors/lambda.rb +4 -0
- data/lib/aws_recon/collectors/wafv2.rb +1 -4
- data/lib/aws_recon/options.rb +3 -2
- data/lib/aws_recon/services.yaml +0 -2
- data/lib/aws_recon/version.rb +1 -1
- metadata +24 -24
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b36afd6476827dbf5a2adaefc02adc5e936f6757634a6309d3e33eeeca8794f1
|
|
4
|
+
data.tar.gz: df21a116d19d6e44981633ec00213e9033e332b03bac8b36a1a55d3e2078e2a2
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 9ad331ae1f7c75d1640f7de804912bae3fec6e85ded6e2aee90b4cc3e34b6b085873660b231f4cec52cca421f430ad2fd82871947bfe293321d33a8a9240d6ea
|
|
7
|
+
data.tar.gz: 6b96da64805694b2b4cf2b3cf23184c8a28ab9d65f56f855e51aecfc77c67745f0fd7df68d648f36426d6bd5ea67791ef4e1b7c4fff5f0ffcd5336203faa9450
|
data/Dockerfile
CHANGED
data/aws_recon.gemspec
CHANGED
|
@@ -24,14 +24,14 @@ Gem::Specification.new do |spec|
|
|
|
24
24
|
spec.require_paths = ['lib']
|
|
25
25
|
|
|
26
26
|
spec.add_dependency 'aws-sdk', '~> 3.0'
|
|
27
|
-
spec.add_dependency 'parallel', '~> 1.
|
|
27
|
+
spec.add_dependency 'parallel', '~> 1.20.1'
|
|
28
28
|
|
|
29
|
-
spec.add_development_dependency 'bundler', '~>
|
|
29
|
+
spec.add_development_dependency 'bundler', '~> 2.2.17'
|
|
30
|
+
spec.add_development_dependency 'byebug', '~> 11.1'
|
|
30
31
|
spec.add_development_dependency 'gem-release', '~> 2.1'
|
|
31
|
-
spec.add_development_dependency 'rake', '~> 12.3'
|
|
32
32
|
spec.add_development_dependency 'minitest', '~> 5.0'
|
|
33
|
-
spec.add_development_dependency 'solargraph', '~> 0.39.11'
|
|
34
|
-
spec.add_development_dependency 'rubocop', '~> 0.87.1'
|
|
35
33
|
spec.add_development_dependency 'pry', '~> 0.13.1'
|
|
36
|
-
spec.add_development_dependency '
|
|
34
|
+
spec.add_development_dependency 'rake', '~> 12.3'
|
|
35
|
+
spec.add_development_dependency 'rubocop', '~> 1.15'
|
|
36
|
+
spec.add_development_dependency 'solargraph', '~> 0.40.4'
|
|
37
37
|
end
|
data/lib/aws_recon/aws_recon.rb
CHANGED
|
@@ -34,7 +34,7 @@ module AwsRecon
|
|
|
34
34
|
# formatter
|
|
35
35
|
@formatter = Formatter.new
|
|
36
36
|
|
|
37
|
-
return
|
|
37
|
+
return if @options.stream_output
|
|
38
38
|
|
|
39
39
|
puts "\nStarting collection with #{@options.threads} threads...\n"
|
|
40
40
|
end
|
|
@@ -66,7 +66,7 @@ module AwsRecon
|
|
|
66
66
|
end
|
|
67
67
|
|
|
68
68
|
#
|
|
69
|
-
# Format @resources as either
|
|
69
|
+
# Format @resources as either JSON or JSONL
|
|
70
70
|
#
|
|
71
71
|
def formatted_json
|
|
72
72
|
if @options.jsonl
|
|
@@ -117,7 +117,7 @@ module AwsRecon
|
|
|
117
117
|
ensure
|
|
118
118
|
elapsed = Process.clock_gettime(Process::CLOCK_MONOTONIC) - @starting
|
|
119
119
|
|
|
120
|
-
puts "\nFinished in #{elapsed.to_i} seconds.\n\n"
|
|
120
|
+
puts "\nFinished in #{elapsed.to_i} seconds.\n\n" unless @options.stream_output
|
|
121
121
|
|
|
122
122
|
# write output file
|
|
123
123
|
if @options.output_file && !@options.s3
|
|
@@ -17,6 +17,9 @@ class Lambda < Mapper
|
|
|
17
17
|
struct = OpenStruct.new(function)
|
|
18
18
|
struct.type = 'function'
|
|
19
19
|
struct.arn = function.function_arn
|
|
20
|
+
struct.vpc_config = function.vpc_config.to_h
|
|
21
|
+
struct.tracing_config = function.tracing_config.to_h
|
|
22
|
+
struct.layers = function.layers ? function.layers.map(&:to_h) : []
|
|
20
23
|
struct.policy = @client.get_policy({ function_name: function.function_name }).policy.parse_policy
|
|
21
24
|
|
|
22
25
|
rescue Aws::Lambda::Errors::ResourceNotFoundException => e
|
|
@@ -36,6 +39,7 @@ class Lambda < Mapper
|
|
|
36
39
|
struct = OpenStruct.new(layer)
|
|
37
40
|
struct.type = 'layer'
|
|
38
41
|
struct.arn = layer.layer_arn
|
|
42
|
+
struct.latest_matching_version = layer.latest_matching_version.to_h
|
|
39
43
|
|
|
40
44
|
# list_layer_versions
|
|
41
45
|
struct.versions = @client.list_layer_versions({ layer_name: layer.layer_name }).layer_versions.map(&:to_h)
|
|
@@ -7,9 +7,7 @@ class WAFV2 < Mapper
|
|
|
7
7
|
#
|
|
8
8
|
# Returns an array of resources.
|
|
9
9
|
#
|
|
10
|
-
# TODO: test live
|
|
11
10
|
# TODO: resolve scope (e.g. CLOUDFRONT supported?)
|
|
12
|
-
# TODO: confirm paging behavior
|
|
13
11
|
#
|
|
14
12
|
def collect
|
|
15
13
|
resources = []
|
|
@@ -25,7 +23,6 @@ class WAFV2 < Mapper
|
|
|
25
23
|
response.web_acls.each do |acl|
|
|
26
24
|
struct = OpenStruct.new(acl.to_h)
|
|
27
25
|
struct.type = 'web_acl'
|
|
28
|
-
# struct.arn = "arn:aws:#{@service}:#{@region}::web_acl/#{acl.id}"
|
|
29
26
|
|
|
30
27
|
params = {
|
|
31
28
|
name: acl.name,
|
|
@@ -40,7 +37,7 @@ class WAFV2 < Mapper
|
|
|
40
37
|
end
|
|
41
38
|
|
|
42
39
|
# list_resources_for_web_acl
|
|
43
|
-
@client.list_resources_for_web_acl({ web_acl_arn:
|
|
40
|
+
@client.list_resources_for_web_acl({ web_acl_arn: acl.arn }).each do |r|
|
|
44
41
|
struct.resources = r.resource_arns.map(&:to_h)
|
|
45
42
|
end
|
|
46
43
|
|
data/lib/aws_recon/options.rb
CHANGED
|
@@ -100,6 +100,7 @@ class Parser
|
|
|
100
100
|
|
|
101
101
|
# write output file to S3 bucket
|
|
102
102
|
opts.on('-b', '--s3-bucket [BUCKET:REGION]', 'Write output file to S3 bucket (default: \'\')') do |bucket_with_region|
|
|
103
|
+
args.stream_output = false
|
|
103
104
|
args.s3 = bucket_with_region
|
|
104
105
|
end
|
|
105
106
|
|
|
@@ -109,8 +110,8 @@ class Parser
|
|
|
109
110
|
end
|
|
110
111
|
|
|
111
112
|
# output format
|
|
112
|
-
opts.on('-f', '--format [FORMAT]', 'Specify output format (default: aws)') do |
|
|
113
|
-
args.output_format =
|
|
113
|
+
opts.on('-f', '--format [FORMAT]', 'Specify output format (default: aws)') do |f|
|
|
114
|
+
args.output_format = f.downcase if %w[aws custom].include?(f.downcase)
|
|
114
115
|
end
|
|
115
116
|
|
|
116
117
|
# threads
|
data/lib/aws_recon/services.yaml
CHANGED
|
@@ -126,7 +126,6 @@
|
|
|
126
126
|
- af-south-1
|
|
127
127
|
- ap-east-1
|
|
128
128
|
- ap-northeast-3
|
|
129
|
-
- eu-north-1
|
|
130
129
|
- eu-south-1
|
|
131
130
|
- me-south-1
|
|
132
131
|
- sa-east-1
|
|
@@ -153,7 +152,6 @@
|
|
|
153
152
|
alias: transfer
|
|
154
153
|
excluded_regions:
|
|
155
154
|
- ap-northeast-3
|
|
156
|
-
- eu-south-1
|
|
157
155
|
- name: DirectConnect
|
|
158
156
|
alias: directconnect
|
|
159
157
|
- name: DirectoryService
|
data/lib/aws_recon/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws_recon
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.5.
|
|
4
|
+
version: 0.5.11
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Josh Larsen
|
|
@@ -9,7 +9,7 @@ authors:
|
|
|
9
9
|
autorequire:
|
|
10
10
|
bindir: bin
|
|
11
11
|
cert_chain: []
|
|
12
|
-
date: 2021-
|
|
12
|
+
date: 2021-05-21 00:00:00.000000000 Z
|
|
13
13
|
dependencies:
|
|
14
14
|
- !ruby/object:Gem::Dependency
|
|
15
15
|
name: aws-sdk
|
|
@@ -31,56 +31,56 @@ dependencies:
|
|
|
31
31
|
requirements:
|
|
32
32
|
- - "~>"
|
|
33
33
|
- !ruby/object:Gem::Version
|
|
34
|
-
version:
|
|
34
|
+
version: 1.20.1
|
|
35
35
|
type: :runtime
|
|
36
36
|
prerelease: false
|
|
37
37
|
version_requirements: !ruby/object:Gem::Requirement
|
|
38
38
|
requirements:
|
|
39
39
|
- - "~>"
|
|
40
40
|
- !ruby/object:Gem::Version
|
|
41
|
-
version:
|
|
41
|
+
version: 1.20.1
|
|
42
42
|
- !ruby/object:Gem::Dependency
|
|
43
43
|
name: bundler
|
|
44
44
|
requirement: !ruby/object:Gem::Requirement
|
|
45
45
|
requirements:
|
|
46
46
|
- - "~>"
|
|
47
47
|
- !ruby/object:Gem::Version
|
|
48
|
-
version:
|
|
48
|
+
version: 2.2.17
|
|
49
49
|
type: :development
|
|
50
50
|
prerelease: false
|
|
51
51
|
version_requirements: !ruby/object:Gem::Requirement
|
|
52
52
|
requirements:
|
|
53
53
|
- - "~>"
|
|
54
54
|
- !ruby/object:Gem::Version
|
|
55
|
-
version:
|
|
55
|
+
version: 2.2.17
|
|
56
56
|
- !ruby/object:Gem::Dependency
|
|
57
|
-
name:
|
|
57
|
+
name: byebug
|
|
58
58
|
requirement: !ruby/object:Gem::Requirement
|
|
59
59
|
requirements:
|
|
60
60
|
- - "~>"
|
|
61
61
|
- !ruby/object:Gem::Version
|
|
62
|
-
version: '
|
|
62
|
+
version: '11.1'
|
|
63
63
|
type: :development
|
|
64
64
|
prerelease: false
|
|
65
65
|
version_requirements: !ruby/object:Gem::Requirement
|
|
66
66
|
requirements:
|
|
67
67
|
- - "~>"
|
|
68
68
|
- !ruby/object:Gem::Version
|
|
69
|
-
version: '
|
|
69
|
+
version: '11.1'
|
|
70
70
|
- !ruby/object:Gem::Dependency
|
|
71
|
-
name:
|
|
71
|
+
name: gem-release
|
|
72
72
|
requirement: !ruby/object:Gem::Requirement
|
|
73
73
|
requirements:
|
|
74
74
|
- - "~>"
|
|
75
75
|
- !ruby/object:Gem::Version
|
|
76
|
-
version: '
|
|
76
|
+
version: '2.1'
|
|
77
77
|
type: :development
|
|
78
78
|
prerelease: false
|
|
79
79
|
version_requirements: !ruby/object:Gem::Requirement
|
|
80
80
|
requirements:
|
|
81
81
|
- - "~>"
|
|
82
82
|
- !ruby/object:Gem::Version
|
|
83
|
-
version: '
|
|
83
|
+
version: '2.1'
|
|
84
84
|
- !ruby/object:Gem::Dependency
|
|
85
85
|
name: minitest
|
|
86
86
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -96,61 +96,61 @@ dependencies:
|
|
|
96
96
|
- !ruby/object:Gem::Version
|
|
97
97
|
version: '5.0'
|
|
98
98
|
- !ruby/object:Gem::Dependency
|
|
99
|
-
name:
|
|
99
|
+
name: pry
|
|
100
100
|
requirement: !ruby/object:Gem::Requirement
|
|
101
101
|
requirements:
|
|
102
102
|
- - "~>"
|
|
103
103
|
- !ruby/object:Gem::Version
|
|
104
|
-
version: 0.
|
|
104
|
+
version: 0.13.1
|
|
105
105
|
type: :development
|
|
106
106
|
prerelease: false
|
|
107
107
|
version_requirements: !ruby/object:Gem::Requirement
|
|
108
108
|
requirements:
|
|
109
109
|
- - "~>"
|
|
110
110
|
- !ruby/object:Gem::Version
|
|
111
|
-
version: 0.
|
|
111
|
+
version: 0.13.1
|
|
112
112
|
- !ruby/object:Gem::Dependency
|
|
113
|
-
name:
|
|
113
|
+
name: rake
|
|
114
114
|
requirement: !ruby/object:Gem::Requirement
|
|
115
115
|
requirements:
|
|
116
116
|
- - "~>"
|
|
117
117
|
- !ruby/object:Gem::Version
|
|
118
|
-
version:
|
|
118
|
+
version: '12.3'
|
|
119
119
|
type: :development
|
|
120
120
|
prerelease: false
|
|
121
121
|
version_requirements: !ruby/object:Gem::Requirement
|
|
122
122
|
requirements:
|
|
123
123
|
- - "~>"
|
|
124
124
|
- !ruby/object:Gem::Version
|
|
125
|
-
version:
|
|
125
|
+
version: '12.3'
|
|
126
126
|
- !ruby/object:Gem::Dependency
|
|
127
|
-
name:
|
|
127
|
+
name: rubocop
|
|
128
128
|
requirement: !ruby/object:Gem::Requirement
|
|
129
129
|
requirements:
|
|
130
130
|
- - "~>"
|
|
131
131
|
- !ruby/object:Gem::Version
|
|
132
|
-
version:
|
|
132
|
+
version: '1.15'
|
|
133
133
|
type: :development
|
|
134
134
|
prerelease: false
|
|
135
135
|
version_requirements: !ruby/object:Gem::Requirement
|
|
136
136
|
requirements:
|
|
137
137
|
- - "~>"
|
|
138
138
|
- !ruby/object:Gem::Version
|
|
139
|
-
version:
|
|
139
|
+
version: '1.15'
|
|
140
140
|
- !ruby/object:Gem::Dependency
|
|
141
|
-
name:
|
|
141
|
+
name: solargraph
|
|
142
142
|
requirement: !ruby/object:Gem::Requirement
|
|
143
143
|
requirements:
|
|
144
144
|
- - "~>"
|
|
145
145
|
- !ruby/object:Gem::Version
|
|
146
|
-
version:
|
|
146
|
+
version: 0.40.4
|
|
147
147
|
type: :development
|
|
148
148
|
prerelease: false
|
|
149
149
|
version_requirements: !ruby/object:Gem::Requirement
|
|
150
150
|
requirements:
|
|
151
151
|
- - "~>"
|
|
152
152
|
- !ruby/object:Gem::Version
|
|
153
|
-
version:
|
|
153
|
+
version: 0.40.4
|
|
154
154
|
description: AWS Recon is a command line tool to collect resources from an Amazon
|
|
155
155
|
Web Services (AWS) account. The tool outputs JSON suitable for processing with other
|
|
156
156
|
tools.
|