Skip to main content

Product review of cloudsploit

Hello People!

This article is to share my understanding about cloudsploit and the service they provide to the people.

What they do?

CloudSploit is a service which analysis your AWS/Azure account for security holes/risks.
With people moving to serverless technologies, Azure and AWS are gaining popularity these days at higher rate. Also alot of developers/dev-ops engineers tend to overlook some of the security considerations while setting up services in cloud.
CloudSploit is here to address such problems for you!

How do they do it?

CloudSploit asks you for a access key with read only permissions to your cloud resources.
They have a set of plugins, which run using this access key.
Each plugin is a javascript function which uses some node cloud SDKs to analyse the services in cloud.

Result of what they do

When you run CloudSploit, as a final output you get to see different plugins and their test results.
The plugins also have recommended actions section which tells you about the security measure you should take.

The process that i went through to test my Azure account with CloudSploit

  • Clone the CloudSploit repository.
  • Install the modules from package.json file
  • Add your service principle AppId and secret along with tenantId and subscription in Index.js file.
  • Run CloudSploit with node index.js
Here is the output which i got to see:

How can you contribute to CloudSploit project?

  • If you feel motivated to contribute to this project, you can go to github account and make pull requests with new security plugins that you can think of.
  • You may also list the additional plugins that you feel need to be developed and make feature requests so that it gets communicated to their developer community.
  • To read more about the development process for plugins, please read ReadMe page which explains the concepts and also helps you understand about the code structure.

Comments

Post a Comment

Popular posts from this blog

When to use Azure Virtual Machine Scale Sets?

So it all started with client's requirement to build a Minimum Viable Product (MVP). The backend of the product was written in python and involved processing of images using Computer Vision. We decided to host the backend in Azure. There were lots of advantages of having the backend hosted in cloud instead of having an on-premise setup. The thing that attracted us the most was infrastructure scaling and availability of the system. We now dont have to bother about infrastructure, power consumption, system availability, system failures, etc. We were in need of GPU machines to run the code in backend. We though of using N-Series Azure virtual machines for this purpose. We wanted to scale the machines horizontally to handle multiple requests. We booted up few more machines to handle the load. This is where Azure Load balancer came into picture. Since there were multiple instances of virtual machines, we needed someone to decide for us, which machine the request should go to. We connect...
Post a Comment
Read more

Rich previews using SEO, for Single Page Applications while sharing links on any social media

You probably know what SEO is. The scope of this article is to solve the problem of rich previews when you share a link about your Single Page Application(SPA) on any social media. This problem exists because, as the name suggests SPAs has only one HTML page in which entire application is loaded. This implicitly means that either we solve the problem of meta tags for each application route somehow or follow the workaround as mentioned below to serve content to bots separately. This article makes use of AWS services to achive our goals of rich previews. Assumptions I assume that the SPA is hosted in a S3 bucket and is connected to cloudfront. Read more about cloudfront here .  The concept Maintain a S3 bucket with route names as the folders inside it. Each folder will have an index.html file corresponding to that route. At minimum, this index.html, for any specific route, will have a html document with head section having all the required meta information. When any o...
2 comments
Read more

Designing a Simple HTML website with materialize

Hello guys, I am a beginner in Web Development. So it all started with the use of html tags and how the browser interprets and translates this markup for us. I started up with building a small website. Usually when we talk about content websites, the more appealing and user friendly the website is, the more you attract the customers. So i started up browsing for some good UI libraries. In my context, i had assumed that materials UI is only supported by angular. But to my surprise, it was not. Here are the 3 options i could find for materials implementation in simple content websites. materializecss bootstrap-material-design getmdl.io My next worry was, i had to reload the damn thing again and again every time i made some changes either in javascript or html. One of the options that i came accoss is to make use of gulp tasks to automate this whole procedure. This procedure for me involved the following things: Auto reload of browser window on some changes in code. Mi...
Post a Comment
Read more