aws_recon 0.5.2 → 0.5.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.github/workflows/check-aws-regions.yml +1 -1
- data/lib/aws_recon/services.yaml +2 -11
- data/lib/aws_recon/version.rb +1 -1
- data/readme.md +5 -5
- data/utils/aws/check_region_exclusions.rb +16 -0
- metadata +1 -1
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: c32ae658ad80c3f24f28a7428f8511526edaf3034c9e6e193361cb55b6788840
|
|
4
|
+
data.tar.gz: 2927c2351efb59cbb24d2e4c36c188b6fbbf6dcd631c1569e27814e39a546b10
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: d5450a2d2fb68bc1a33787c550f094b2449474023045304fe0c00da432be3818963cc3285bfed572147890fcf05a02de4c57837d5ec8a7963e00976f7f362003
|
|
7
|
+
data.tar.gz: b2708a5c9d02b0f2bb226b04c0a86356658c843c75721d102ca9364802ac847c632346bf16c93428dcc5346414457c78e8a39c80d9461b4f373bc2fe92cdee2d
|
data/lib/aws_recon/services.yaml
CHANGED
|
@@ -37,8 +37,6 @@
|
|
|
37
37
|
alias: ecs
|
|
38
38
|
- name: ElasticLoadBalancing
|
|
39
39
|
alias: elb
|
|
40
|
-
excluded_regions:
|
|
41
|
-
- ap-southeast-1
|
|
42
40
|
- name: ElasticLoadBalancingV2
|
|
43
41
|
alias: elbv2
|
|
44
42
|
- name: ElastiCache
|
|
@@ -85,15 +83,15 @@
|
|
|
85
83
|
- name: Shield
|
|
86
84
|
global: true
|
|
87
85
|
alias: shield
|
|
86
|
+
excluded_regions:
|
|
87
|
+
- ap-northeast-3
|
|
88
88
|
- name: CloudFormation
|
|
89
89
|
alias: cloudformation
|
|
90
90
|
- name: SES
|
|
91
91
|
alias: ses
|
|
92
92
|
excluded_regions:
|
|
93
|
-
- af-south-1
|
|
94
93
|
- ap-east-1
|
|
95
94
|
- ap-northeast-3
|
|
96
|
-
- eu-south-1
|
|
97
95
|
- name: CloudWatch
|
|
98
96
|
alias: cloudwatch
|
|
99
97
|
- name: CloudWatchLogs
|
|
@@ -107,8 +105,6 @@
|
|
|
107
105
|
alias: sm
|
|
108
106
|
- name: SecurityHub
|
|
109
107
|
alias: securityhub
|
|
110
|
-
excluded_regions:
|
|
111
|
-
- ap-northeast-3
|
|
112
108
|
- name: Support
|
|
113
109
|
global: true
|
|
114
110
|
alias: support
|
|
@@ -116,16 +112,12 @@
|
|
|
116
112
|
alias: ssm
|
|
117
113
|
- name: GuardDuty
|
|
118
114
|
alias: guardduty
|
|
119
|
-
excluded_regions:
|
|
120
|
-
- ap-northeast-3
|
|
121
115
|
- name: Athena
|
|
122
116
|
alias: athena
|
|
123
117
|
excluded_regions:
|
|
124
118
|
- ap-northeast-3
|
|
125
119
|
- name: EFS
|
|
126
120
|
alias: efs
|
|
127
|
-
excluded_regions:
|
|
128
|
-
- ap-northeast-3
|
|
129
121
|
- name: Firehose
|
|
130
122
|
alias: firehose
|
|
131
123
|
- name: Lightsail
|
|
@@ -145,7 +137,6 @@
|
|
|
145
137
|
- af-south-1
|
|
146
138
|
- ap-east-1
|
|
147
139
|
- ap-northeast-3
|
|
148
|
-
- ap-south-1
|
|
149
140
|
- eu-north-1
|
|
150
141
|
- eu-south-1
|
|
151
142
|
- eu-west-3
|
data/lib/aws_recon/version.rb
CHANGED
data/readme.md
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
[](https://github.com/darkbitio/aws-recon/actions?query=branch%3Amain)
|
|
2
2
|
[](https://rubygems.org/gems/aws_recon)
|
|
3
|
-
|
|
3
|
+
[](https://github.com/darkbitio/aws-recon/actions/workflows/check-aws-regions.yml)
|
|
4
4
|
# AWS Recon
|
|
5
5
|
|
|
6
6
|
A multi-threaded AWS security-focused inventory collection tool written in Ruby.
|
|
@@ -54,13 +54,13 @@ To run locally, first install the gem:
|
|
|
54
54
|
|
|
55
55
|
```
|
|
56
56
|
$ gem install aws_recon
|
|
57
|
-
Fetching aws_recon-0.
|
|
57
|
+
Fetching aws_recon-0.5.2.gem
|
|
58
58
|
Fetching aws-sdk-3.0.1.gem
|
|
59
59
|
Fetching parallel-1.20.1.gem
|
|
60
60
|
...
|
|
61
61
|
Successfully installed aws-sdk-3.0.1
|
|
62
62
|
Successfully installed parallel-1.20.1
|
|
63
|
-
Successfully installed aws_recon-0.
|
|
63
|
+
Successfully installed aws_recon-0.5.2
|
|
64
64
|
```
|
|
65
65
|
|
|
66
66
|
Or add it to your Gemfile using `bundle`:
|
|
@@ -72,7 +72,7 @@ Resolving dependencies...
|
|
|
72
72
|
...
|
|
73
73
|
Using aws-sdk 3.0.1
|
|
74
74
|
Using parallel-1.20.1
|
|
75
|
-
Using aws_recon 0.
|
|
75
|
+
Using aws_recon 0.5.2
|
|
76
76
|
```
|
|
77
77
|
|
|
78
78
|
## Usage
|
|
@@ -249,7 +249,7 @@ Most users will want to limit collection to relevant services and regions. Runni
|
|
|
249
249
|
```
|
|
250
250
|
$ aws_recon -h
|
|
251
251
|
|
|
252
|
-
AWS Recon - AWS Inventory Collector (0.
|
|
252
|
+
AWS Recon - AWS Inventory Collector (0.5.2)
|
|
253
253
|
|
|
254
254
|
Usage: aws_recon [options]
|
|
255
255
|
-r, --regions [REGIONS] Regions to scan, separated by comma (default: all)
|
|
@@ -10,6 +10,7 @@ require 'yaml'
|
|
|
10
10
|
TS = Time.now.to_i
|
|
11
11
|
URL = "https://api.regional-table.region-services.aws.a2z.com/index.json?timestamp=#{TS}000"
|
|
12
12
|
|
|
13
|
+
service_to_query = ARGV[0]
|
|
13
14
|
region_exclusion_mistmatch = nil
|
|
14
15
|
|
|
15
16
|
#
|
|
@@ -41,6 +42,21 @@ map = {}
|
|
|
41
42
|
data = res.body
|
|
42
43
|
json = JSON.parse(data)
|
|
43
44
|
|
|
45
|
+
#
|
|
46
|
+
# query regions for a single service
|
|
47
|
+
#
|
|
48
|
+
if service_to_query
|
|
49
|
+
single_service_regions = []
|
|
50
|
+
|
|
51
|
+
json['prices'].each do |p|
|
|
52
|
+
single_service_regions << p['id'].split(':').last
|
|
53
|
+
end
|
|
54
|
+
|
|
55
|
+
single_service_regions.uniq.sort.each { |r| puts r }
|
|
56
|
+
|
|
57
|
+
exit 0
|
|
58
|
+
end
|
|
59
|
+
|
|
44
60
|
# iterate through AWS provided services & regions
|
|
45
61
|
json['prices'].each do |p|
|
|
46
62
|
at = p['attributes']
|