Data collection script for public cloud
MIT License
These scripts are for data gathering on public cloud infrastructure and configuration.
The easiest way to use this is to clone it into a cloud shell and run from there.
git clone https://github.com/devsecfranklin/cloud-tools.git
cd cloud-tools
Download the script to your cloud shell in Azure.
wget -O az_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/az/az_check.sh
chmod 755 az_check.sh
Execute the script once for each Resource Group, such as ./az_check.sh -r <RG-Name>
.
./az_check.sh -r bmika-app3
Upload the compressed TAR file as directed.
Download the script to your cloud shell in GCP.
wget -O gcp_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/gcp/gcp_check.sh
chmod 755 gcp_check.sh
Execute the script once for each VPC (such as mgmt, trust, and untrust).
./gcp_check.sh -v ps-devsecops-mgmt
./gcp_check.sh -v ps-devsecops-trust
./gcp_check.sh -v ps-devsecops-untrust
Same as previous example, but in a single line:
for vpc in ps-devsecops-mgmt ps-devsecops-trust ps-devsecops-untrust; do \
./gcp_check.sh -v ${vpc}; done
Upload the compressed TAR file as directed.
Download the script to your cloud shell in AWS.
wget -O aws_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/aws/aws_check.sh
chmod 755 aws_check.sh
Execute the script once for each VPC.
./aws_check.sh -v ps-devsecops-mgmt
./aws_check.sh -v ps-devsecops-trust
./aws_check.sh -v ps-devsecops-untrust
Same as previous example, but in a single line:
for vpc in ps-devsecops-mgmt ps-devsecops-trust ps-devsecops-untrust; do \
./aws_check.sh -v ${vpc}; done
Download the script to your cloud shell in AWS.
wget -O oci_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/oci/oci_check.sh
chmod 755 oci_check.sh
Execute the script once for each Compartment.
Example:
./oci_check.sh -c ocid1.compartment.oc1..aaaaaaaa123412341234asdfasdf
Download the script.
wget -O oci_check.sh https://raw.githubusercontent.com/devsecfranklin/cloud-scripts/main/oci/oci_check.sh
chmod 755 oci_check.sh
Execute the script once for the kube-system
namespace, and other desired namespaces.
Example:
./openshift_check.sh -n kube-system
./openshift_check.sh -n web-app-test
A small set of test and JSON output is generated from the execution of the scripts. Upload the compressed TAR file as directed.