长亭百川云 - 产品详情

banner
产品logo

Prowler

96

0

Prowler是一款开源云安全工具,用于评估、审核和增强AWS、GCP和Azure的安全性。它还配备了事件响应、持续监控、强化和取证准备。

产品logo
Prowler

Prowler是一款开源云安全工具,用于评估、审核和增强AWS、GCP和Azure的安全性。它还配备了事件响应、持续监控、强化和取证准备。

产品关联图片
预览
产品关联图片
预览
产品关联图片
预览
产品关联图片
预览

markdown-img markdown-img

Prowler SaaS and Prowler Open Source are as dynamic and adaptable as the environment they’re meant to protect. Trusted by the leaders in security.

Learn more at prowler.com

Prowler community on Slack
Join our Prowler community!


Slack Shield Python Version Python Version PyPI Prowler Downloads Docker Pulls Docker Docker AWS ECR Gallery markdown-img

Repo size Issues Version Version Contributors License Twitter Twitter


markdown-img

Description

Prowler is an Open Source security tool to perform AWS, Azure, Google Cloud and Kubernetes security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness, and also remediations! We have Prowler CLI (Command Line Interface) that we call Prowler Open Source and a service on top of it that we call Prowler SaaS.

Prowler CLI

1prowler <provider>

Prowler CLI Execution

Prowler Dashboard

1prowler dashboard

Prowler Dashboard

It contains hundreds of controls covering CIS, NIST 800, NIST CSF, CISA, RBI, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, AWS Well-Architected Framework Security Pillar, AWS Foundational Technical Review (FTR), ENS (Spanish National Security Scheme) and your custom security frameworks.

ProviderChecksServicesCompliance FrameworksCategories
AWS38567 -> prowler aws --list-services28 -> prowler aws --list-compliance7 -> prowler aws --list-categories
GCP7713 -> prowler gcp --list-services1 -> prowler gcp --list-compliance2 -> prowler gcp --list-categories
Azure13516 -> prowler azure --list-services2 -> prowler azure --list-compliance2 -> prowler azure --list-categories
Kubernetes837 -> prowler kubernetes --list-services1 -> prowler kubernetes --list-compliance7 -> prowler kubernetes --list-categories

💻 Installation

Pip package

Prowler is available as a project in PyPI, thus can be installed using pip with Python >= 3.9, < 3.13:

1pip install prowler
2prowler -v

More details at https://docs.prowler.com

Containers

The available versions of Prowler are the following:

  • latest: in sync with master branch (bear in mind that it is not a stable version)
  • v3-latest: in sync with v3 branch (bear in mind that it is not a stable version)
  • <x.y.z> (release): you can find the releases here, those are stable releases.
  • stable: this tag always point to the latest release.
  • v3-stable: this tag always point to the latest release for v3.

The container images are available here:

From GitHub

Python >= 3.9, < 3.13 is required with pip and poetry:

git clone https://github.com/prowler-cloud/prowler
cd prowler
poetry shell
poetry install
python prowler.py -v

If you want to clone Prowler from Windows, use git config core.longpaths true to allow long file paths.

📐✏️ High level architecture

You can run Prowler from your workstation, a Kubernetes Job, a Google Compute Engine, an Azure VM, an EC2 instance, Fargate or any other container, CloudShell and many more.

Architecture

Deprecations from v3

General

  • Allowlist now is called Mutelist.
  • The --quiet option has been deprecated, now use the --status flag to select the finding's status you want to get from PASS, FAIL or MANUAL.
  • All INFO finding's status has changed to MANUAL.
  • The CSV output format is common for all the providers.

We have deprecated some of our outputs formats:

  • The native JSON is replaced for the JSON OCSF v1.1.0, common for all the providers.

AWS

  • Deprecate the AWS flag --sts-endpoint-region since we use AWS STS regional tokens.
  • To send only FAILS to AWS Security Hub, now use either --send-sh-only-fails or --security-hub --status FAIL.

📖 Documentation

Install, Usage, Tutorials and Developer Guide is at https://docs.prowler.com/

📃 License

Prowler is licensed as Apache License 2.0 as specified in each file. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0

1.5k

7

一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术,作为反向代理接入,保护你的网站不受黑客攻击。

产品关联图片
预览
产品关联图片
预览
产品关联图片
预览
产品关联图片
预览

基于 Nginx 的开源 WAF,让 Web 服务自带安全能力

产品关联图片
预览
产品关联图片
预览
产品关联图片
预览
产品logo

长亭科技

686

0

专注于web指纹识别的工具

614

0

牧云主机安全管理平台集资产管理、入侵检测、风险感知三大维度20余项防护功能于一体,形成具有精准预测、实时监测、快速检测、多维分析、自动响应的安全管理体系,帮助企业全方位掌握服务器安全态势。

产品关联图片
预览
产品关联图片
预览
产品关联图片
预览
产品关联图片
预览
关注或联系我们
添加百川云公众号,移动管理云安全产品
咨询热线:
4000-327-707
百川公众号
百川公众号
百川云客服
百川云客服

Copyright ©2024 北京长亭科技有限公司
icon
京ICP备 2024055124号-2