107
0
Prowler是一款开源云安全工具,用于评估、审核和增强AWS、GCP和Azure的安全性。它还配备了事件响应、持续监控、强化和取证准备。
Prowler是一款开源云安全工具,用于评估、审核和增强AWS、GCP和Azure的安全性。它还配备了事件响应、持续监控、强化和取证准备。
Prowler SaaS and Prowler Open Source are as dynamic and adaptable as the environment they’re meant to protect. Trusted by the leaders in security.
Learn more at prowler.com
Prowler is an Open Source security tool to perform AWS, Azure, Google Cloud and Kubernetes security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness, and also remediations! We have Prowler CLI (Command Line Interface) that we call Prowler Open Source and a service on top of it that we call Prowler SaaS.
1prowler <provider>
1prowler dashboard
It contains hundreds of controls covering CIS, NIST 800, NIST CSF, CISA, RBI, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, AWS Well-Architected Framework Security Pillar, AWS Foundational Technical Review (FTR), ENS (Spanish National Security Scheme) and your custom security frameworks.
Provider | Checks | Services | Compliance Frameworks | Categories |
---|---|---|---|---|
AWS | 385 | 67 -> prowler aws --list-services | 28 -> prowler aws --list-compliance | 7 -> prowler aws --list-categories |
GCP | 77 | 13 -> prowler gcp --list-services | 1 -> prowler gcp --list-compliance | 2 -> prowler gcp --list-categories |
Azure | 135 | 16 -> prowler azure --list-services | 2 -> prowler azure --list-compliance | 2 -> prowler azure --list-categories |
Kubernetes | 83 | 7 -> prowler kubernetes --list-services | 1 -> prowler kubernetes --list-compliance | 7 -> prowler kubernetes --list-categories |
Prowler is available as a project in PyPI, thus can be installed using pip with Python >= 3.9, < 3.13:
1pip install prowler 2prowler -v
More details at https://docs.prowler.com
The available versions of Prowler are the following:
latest
: in sync with master
branch (bear in mind that it is not a stable version)v3-latest
: in sync with v3
branch (bear in mind that it is not a stable version)<x.y.z>
(release): you can find the releases here, those are stable releases.stable
: this tag always point to the latest release.v3-stable
: this tag always point to the latest release for v3.The container images are available here:
Python >= 3.9, < 3.13 is required with pip and poetry:
git clone https://github.com/prowler-cloud/prowler
cd prowler
poetry shell
poetry install
python prowler.py -v
If you want to clone Prowler from Windows, use
git config core.longpaths true
to allow long file paths.
You can run Prowler from your workstation, a Kubernetes Job, a Google Compute Engine, an Azure VM, an EC2 instance, Fargate or any other container, CloudShell and many more.
Allowlist
now is called Mutelist
.--quiet
option has been deprecated, now use the --status
flag to select the finding's status you want to get from PASS, FAIL or MANUAL.INFO
finding's status has changed to MANUAL
.We have deprecated some of our outputs formats:
--send-sh-only-fails
or --security-hub --status FAIL
.Install, Usage, Tutorials and Developer Guide is at https://docs.prowler.com/
Prowler is licensed as Apache License 2.0 as specified in each file. You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
长亭科技
1.7k
7
一款足够简单、足够好用、足够强的免费 WAF。基于业界领先的语义引擎检测技术,作为反向代理接入,保护你的网站不受黑客攻击。