Sign in
Categories
Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help

Prowler Security Hardening Scan

Prowler Security Hardening Scan

By: Martin Mueller Latest Version: v1.0.9
Linux/Unix

Product Overview

Prowler Security Stack.

https://www.youtube.com/watch?v=4JYaGylXEMc

Based on the security Tool Prowler https://github.com/toniblyx/prowler for best practices assessments, hardening and forensics readiness. I developed an AWS CDK Custom Construct for deploying a Prowler security stack https://github.com/mmuller88/cdk-prowler .

But as to learn and deploy AWS CDK takes times I decided to create an AMI which does that for you. Deploying the cdk-prowler stack into your account is as easy as starting an ec2 instance. The following steps are necessary:

  1. Create an Ec2 role named Ec2Prowler. The role needs AdministratorAccess for allowing to deploy cdk stacks into your account.

  2. Start an Ec2 instance with the AMI and the Ec2Prowler role attached.


When you started the Ec2 instance a new Cloudformation stack called ProwlerAudit-stack gets created. You can terminate the ec2 instance after the stack got created.

When the stack creation finishes a Codebuild project runs the Prowler security check. After the run you can access the html results from the prowler S3 bucket named prowleraudit-stack-prowlerauditreportbucket... . Or you can see the results in the CodeBuild report group.

Notice! For running prowler again you need to deploy the Ec2 instance again!

As for transparency I decided to make the code for creating the AMI public available. Go to https://github.com/mmuller88/sec-ami . There you see the Dockerfile which I used for baking the AMI.

Please write a review if you like the product. Many thanks :)

Version

v1.0.9

Categories

Operating System

Linux/Unix, Ubuntu 20.04

Delivery Methods

  • Amazon Machine Image

Pricing Information

Usage Information

Support Information

Customer Reviews