aws_recon 0.5.2 → 0.5.3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.github/workflows/check-aws-regions.yml +1 -1
- data/lib/aws_recon/services.yaml +2 -11
- data/lib/aws_recon/version.rb +1 -1
- data/readme.md +5 -5
- data/utils/aws/check_region_exclusions.rb +16 -0
- metadata +1 -1
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: c32ae658ad80c3f24f28a7428f8511526edaf3034c9e6e193361cb55b6788840
|
|
4
|
+
data.tar.gz: 2927c2351efb59cbb24d2e4c36c188b6fbbf6dcd631c1569e27814e39a546b10
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: d5450a2d2fb68bc1a33787c550f094b2449474023045304fe0c00da432be3818963cc3285bfed572147890fcf05a02de4c57837d5ec8a7963e00976f7f362003
|
|
7
|
+
data.tar.gz: b2708a5c9d02b0f2bb226b04c0a86356658c843c75721d102ca9364802ac847c632346bf16c93428dcc5346414457c78e8a39c80d9461b4f373bc2fe92cdee2d
|
data/lib/aws_recon/services.yaml
CHANGED
|
@@ -37,8 +37,6 @@
|
|
|
37
37
|
alias: ecs
|
|
38
38
|
- name: ElasticLoadBalancing
|
|
39
39
|
alias: elb
|
|
40
|
-
excluded_regions:
|
|
41
|
-
- ap-southeast-1
|
|
42
40
|
- name: ElasticLoadBalancingV2
|
|
43
41
|
alias: elbv2
|
|
44
42
|
- name: ElastiCache
|
|
@@ -85,15 +83,15 @@
|
|
|
85
83
|
- name: Shield
|
|
86
84
|
global: true
|
|
87
85
|
alias: shield
|
|
86
|
+
excluded_regions:
|
|
87
|
+
- ap-northeast-3
|
|
88
88
|
- name: CloudFormation
|
|
89
89
|
alias: cloudformation
|
|
90
90
|
- name: SES
|
|
91
91
|
alias: ses
|
|
92
92
|
excluded_regions:
|
|
93
|
-
- af-south-1
|
|
94
93
|
- ap-east-1
|
|
95
94
|
- ap-northeast-3
|
|
96
|
-
- eu-south-1
|
|
97
95
|
- name: CloudWatch
|
|
98
96
|
alias: cloudwatch
|
|
99
97
|
- name: CloudWatchLogs
|
|
@@ -107,8 +105,6 @@
|
|
|
107
105
|
alias: sm
|
|
108
106
|
- name: SecurityHub
|
|
109
107
|
alias: securityhub
|
|
110
|
-
excluded_regions:
|
|
111
|
-
- ap-northeast-3
|
|
112
108
|
- name: Support
|
|
113
109
|
global: true
|
|
114
110
|
alias: support
|
|
@@ -116,16 +112,12 @@
|
|
|
116
112
|
alias: ssm
|
|
117
113
|
- name: GuardDuty
|
|
118
114
|
alias: guardduty
|
|
119
|
-
excluded_regions:
|
|
120
|
-
- ap-northeast-3
|
|
121
115
|
- name: Athena
|
|
122
116
|
alias: athena
|
|
123
117
|
excluded_regions:
|
|
124
118
|
- ap-northeast-3
|
|
125
119
|
- name: EFS
|
|
126
120
|
alias: efs
|
|
127
|
-
excluded_regions:
|
|
128
|
-
- ap-northeast-3
|
|
129
121
|
- name: Firehose
|
|
130
122
|
alias: firehose
|
|
131
123
|
- name: Lightsail
|
|
@@ -145,7 +137,6 @@
|
|
|
145
137
|
- af-south-1
|
|
146
138
|
- ap-east-1
|
|
147
139
|
- ap-northeast-3
|
|
148
|
-
- ap-south-1
|
|
149
140
|
- eu-north-1
|
|
150
141
|
- eu-south-1
|
|
151
142
|
- eu-west-3
|
data/lib/aws_recon/version.rb
CHANGED
data/readme.md
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
[](https://github.com/darkbitio/aws-recon/actions?query=branch%3Amain)
|
|
2
2
|
[](https://rubygems.org/gems/aws_recon)
|
|
3
|
-
|
|
3
|
+
[](https://github.com/darkbitio/aws-recon/actions/workflows/check-aws-regions.yml)
|
|
4
4
|
# AWS Recon
|
|
5
5
|
|
|
6
6
|
A multi-threaded AWS security-focused inventory collection tool written in Ruby.
|
|
@@ -54,13 +54,13 @@ To run locally, first install the gem:
|
|
|
54
54
|
|
|
55
55
|
```
|
|
56
56
|
$ gem install aws_recon
|
|
57
|
-
Fetching aws_recon-0.
|
|
57
|
+
Fetching aws_recon-0.5.2.gem
|
|
58
58
|
Fetching aws-sdk-3.0.1.gem
|
|
59
59
|
Fetching parallel-1.20.1.gem
|
|
60
60
|
...
|
|
61
61
|
Successfully installed aws-sdk-3.0.1
|
|
62
62
|
Successfully installed parallel-1.20.1
|
|
63
|
-
Successfully installed aws_recon-0.
|
|
63
|
+
Successfully installed aws_recon-0.5.2
|
|
64
64
|
```
|
|
65
65
|
|
|
66
66
|
Or add it to your Gemfile using `bundle`:
|
|
@@ -72,7 +72,7 @@ Resolving dependencies...
|
|
|
72
72
|
...
|
|
73
73
|
Using aws-sdk 3.0.1
|
|
74
74
|
Using parallel-1.20.1
|
|
75
|
-
Using aws_recon 0.
|
|
75
|
+
Using aws_recon 0.5.2
|
|
76
76
|
```
|
|
77
77
|
|
|
78
78
|
## Usage
|
|
@@ -249,7 +249,7 @@ Most users will want to limit collection to relevant services and regions. Runni
|
|
|
249
249
|
```
|
|
250
250
|
$ aws_recon -h
|
|
251
251
|
|
|
252
|
-
AWS Recon - AWS Inventory Collector (0.
|
|
252
|
+
AWS Recon - AWS Inventory Collector (0.5.2)
|
|
253
253
|
|
|
254
254
|
Usage: aws_recon [options]
|
|
255
255
|
-r, --regions [REGIONS] Regions to scan, separated by comma (default: all)
|
|
@@ -10,6 +10,7 @@ require 'yaml'
|
|
|
10
10
|
TS = Time.now.to_i
|
|
11
11
|
URL = "https://api.regional-table.region-services.aws.a2z.com/index.json?timestamp=#{TS}000"
|
|
12
12
|
|
|
13
|
+
service_to_query = ARGV[0]
|
|
13
14
|
region_exclusion_mistmatch = nil
|
|
14
15
|
|
|
15
16
|
#
|
|
@@ -41,6 +42,21 @@ map = {}
|
|
|
41
42
|
data = res.body
|
|
42
43
|
json = JSON.parse(data)
|
|
43
44
|
|
|
45
|
+
#
|
|
46
|
+
# query regions for a single service
|
|
47
|
+
#
|
|
48
|
+
if service_to_query
|
|
49
|
+
single_service_regions = []
|
|
50
|
+
|
|
51
|
+
json['prices'].each do |p|
|
|
52
|
+
single_service_regions << p['id'].split(':').last
|
|
53
|
+
end
|
|
54
|
+
|
|
55
|
+
single_service_regions.uniq.sort.each { |r| puts r }
|
|
56
|
+
|
|
57
|
+
exit 0
|
|
58
|
+
end
|
|
59
|
+
|
|
44
60
|
# iterate through AWS provided services & regions
|
|
45
61
|
json['prices'].each do |p|
|
|
46
62
|
at = p['attributes']
|