AWS Security & Compliance CloudQuery policy pack

Official AWS security & compliance policy pack for CloudQuery.

What is CloudQuery

The open-source cloud asset inventory powered by SQL.

CloudQuery extracts, transforms, and loads your cloud assets into normalized PostgreSQL tables. CloudQuery enables you to assess, audit, and evaluate the configurations of your cloud assets.

Links

  • Homepage: https://cloudquery.io
  • Documentation: https://docs.cloudquery.io
  • CloudQuery Hub (providers & policies documentation): https://hub.cloudquery.io/
  • Discord: https://cloudquery.io/discord

Included Policies

  • CIS v1.2.0
  • PCI DSS v.3.2.1

Quick Start

Prerequisite

  1. Install CloudQuery
copied!

Copy

# install with brew brew install cloudquery/tap/cloudquery # or download precompiled binaries from https://github.com/cloudquery/cloudquery/releases
  1. Download and Configure AWS Provider
copied!

Copy

cloudquery init aws
  1. Fetch
copied!

Copy

# connect or run a local PostgreSQL docker run -p 5432:5432 -e POSTGRES_PASSWORD=pass -d postgres # extract your cloud infra configuration cloudquery fetch

Running

copied!

Copy

# Describe what is available in the policy pack cloudquery policy describe aws # Run the whole pack cloudquery policy run aws # Run specific policy cloudquery policy run aws aws/cis_v1.2.0 # Run specific policy cloudquery policy run aws aws/pci_dss_v3.2.1 # Run specific check cloudquery policy run aws aws/cis_v1.2.0/1/1
Version

v0.1.0

MPL-2.0

Repository
Published at

Published At

© 2022 CloudQuery inc. All Rights Reserved.