Sign in

Sign in

or

Create a new account

Categories

What is AWS Marketplace Procurement Governance and Entitlement Cost Management How to Sell

Infrastructure Software Backup & Recovery Data Analytics High Performance Computing Migration Network Infrastructure Operating Systems Security Storage

DevOps Agile Lifecycle Management Application Development Application Servers Application Stacks Continuous Integration and Continuous Delivery Infrastructure as Code Issue & Bug Tracking Monitoring Log Analysis Source Control Testing

Business Applications Blockchain Collaboration & Productivity Contact Center Content Management CRM eCommerce eLearning Human Resources IT Business Management Project Management

Machine Learning Human Review Services ML Solutions Data Labeling Services Computer Vision Natural Language Processing Speech Recognition Text Image Video Audio Structured Intelligent Automation Generative AI

Data Products Financial Services Data Healthcare & Life Sciences Data Media & Entertainment Data Telecommunications Data Gaming Data Automotive Data Manufacturing Data Resources Data Retail, Location & Marketing Data Public Sector Data Environmental Data

IoT Analytics Applications Device Connectivity Device Management Device Security Industrial IoT Smart Home & City

Professional Services Assessments Implementation Managed Services Premium Support Training

Industries Education & Research Financial Services Healthcare & Life Sciences Media & Entertainment Industrial Energy Automotive

Cloud Operations Cloud Governance Cloud Financial Management

Delivery Methods Amazon Machine Image Amazon SageMaker AWS Data Exchange CloudFormation Stack Container Image Helm Chart Add-on for Amazon EKS Private Image Build Professional Services SaaS

Solutions AWS Well-Architected Business Applications Data & Analytics Data Products DevOps Infrastructure Software Internet of Things Machine Learning Migration Security

Industry ??industrySolutions.dropdown.advertising_and_marketing_en??Energy ??industrySolutions.dropdown.engineering_construction_and_real_estate_en??Financial Services Healthcare & Life Industrial ??industrySolutions.dropdown.life_sciences_en??Media & Entertainment Nonprofit ??industrySolutions.dropdown.power_and_utility_en??Public Health Public Sector ??industrySolutions.dropdown.retail_en????industrySolutions.dropdown.sustainability_en??Telecommunications

AWS Service Integrations AWS Control Tower AWS PrivateLink Pre-trained Amazon SageMaker Models

AWS IQ Websites & Mobile Applications Databases & Analytics Networking & Security Machine Learning Productivity & Collaboration Cost Optimization Other

Resources Analyst Reports Blogs Customer Success Stories Events Implementation Guides Videos Webinars Whitepapers

Your Saved List

Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Security Hardening Scan

Security Hardening Scan

By: Martin Mueller Latest Version: v1.1.0

Linux/Unix

Linux/Unix

This version has been removed and is no longer available to new customers.

Product Overview

Security Stack.

https://www.youtube.com/watch?v=4JYaGylXEMc

Based on the security Tool Prowler https://github.com/toniblyx/prowler for best practices assessments, hardening and forensics readiness. I developed an AWS CDK Custom Construct for deploying a Prowler security stack https://github.com/mmuller88/cdk-prowler .

But as to learn and deploy AWS CDK takes times I decided to create an AMI which does that for you. Deploying the cdk-prowler stack into your account is as easy as starting an ec2 instance. The following steps are necessary:

Create an Ec2 role named Ec2Prowler. The role needs AdministratorAccess for allowing to deploy cdk stacks into your account.
Start an Ec2 instance with the AMI and the Ec2Prowler role attached.

When you started the Ec2 instance a new Cloudformation stack called ProwlerAudit-stack gets created. You can terminate the ec2 instance after the stack got created.

When the stack creation finishes a Codebuild project runs the Prowler security check. After the run you can access the html results from the prowler S3 bucket named prowleraudit-stack-prowlerauditreportbucket... . Or you can see the results in the CodeBuild report group.

Notice! For running prowler again you need to deploy the Ec2 instance again!

As for transparency I decided to make the code for creating the AMI public available. Go to https://github.com/mmuller88/sec-ami . There you see the Dockerfile which I used for baking the AMI.

Please write a review if you like the product. Many thanks :)

Version

v1.1.0

By

Martin Mueller

Video

See Product Video

Categories

Security

Operating System

Linux/Unix, Ubuntu 20.04

Delivery Methods

Amazon Machine Image

Pricing Information

Usage Information

Support Information

Customer Reviews