This open source Cloud Discovery tool is used to discover cloud infrastructure and apps, such as Docker Registries, Kubernetes API servers, with weak settings or authentication
Twistlock has released a new open source Cloud Discovery tool. The first release supports Amazon Web Services (AWS), Microsoft Azure and Google Cloud Platform (GCP).
Cloud Discovery gives enterprise infrastructure, operations, and security teams the ability to easily understand and quantify the size of their environment. This is a powerful tool is used by audit and security practitioners that want a simple way to discover all the ‘unknown unknowns’ across environments without having to manually login to multiple provider consoles, click through many pages, and manually export the data
Cloud Discovery’s Working
Cloud Discovery connects to cloud providers’ native platform APIs to discover services and their metadata and requires only read permissions. Cloud Discovery also has a network discovery option that uses port scanning to sweep IP ranges and discover cloud native infrastructure and apps, such as Docker Registries and Kubernetes API servers, with weak settings or authentication.
Key features include:
- Network discovery to discover cloud native infrastructure and applications, such as Docker Registries and Kubernetes API servers
- Instantly identify weak settings and authentication
- Easily integrated into DevSecOps processes
- Provided as a simple Docker container image that can be run anywhere and requires only read permissions to cloud accounts
- Works well for both interactive use and automation
- Outputs data into standard JSON for easy integration with other tools
Written in Go
“In many organizations, IT ops, security, and audit personnel need to discover all the cloud native entities being used at their organizations,” said John Morello, Chief Technology Officer, Twistlock. “This is often a result of development teams starting up resources and deploying cloud native applications, but the security or operations team may not always know exactly where they’re deploying them. We want to make that easy without creating any new security gaps.”
“Since our founding, we’ve been committed to enhancing security efforts for the cloud native community through upstream contributions to open source projects,” said Ben Bernstein, Chief Executive Officer, Twistlock. “From creating the authorization framework within Docker and Openshift and secrets management for Docker Swarm, to the release of Cloud Discovery — open source is in our DNA. We hope Cloud Discovery helps the community and look forward to adding new features and components that benefit everyone.”
For more information click here.