What is Prowler?
During my research on how to do an security assessment on the cloud infrastructure, i stumble with Prowler tools which been write by Toni de la Fuente Twitter. The origin of the “Prowler” is from a song on the late 1980’s which been sang by Iron Maiden debut album. Prowler is a tools where it been written for the AWS security assessment, auditing and hardening purpose. The tools is following the guidelines of the CIS Amazon Web Service Foundations Benchmark and it also performs an extra checking as well.
This tools can done a few things such as the following:
- A proper report with colourish/monochrome type
- A CSV type of report format
- Running a specific type of checks without having to run the entire report.
- Possible to run and check multiple AWS accounts in parallel
Let’s go into business.
Firstly, we will need to download the tools from here by using .zip format.
You can download it using terminal where the command are git clone https://github.com/Alfresco/prowler
After finish download and install step, we will to install the awscli for those who dont have the awscli installed.
Later, we will need to use the command aws configure to key-in the input on the Key of the AWS access
You’re already to go when the aws configure is completed.
Now, Let get start with the assessment
We will need to run the command such as ./prowler or ./prowler.sh(This is depends on the installer format you get)
If need more help on the command, we can go for ./prowler -h