Show HN: RpCheckup – Catch AWS resource policy backdoors like Endgame (opens in new tab)

(github.com)

10 pointsgsoltis5y ago3 comments

3 comments

Hey all, we wrote rpCheckup after seeing the Endgame (https://news.ycombinator.com/item?id=26154038) post the other day. A lot of the issues it surfaces are things we routinely check for with our customers, but we are unaware of any open source tools that help AWS customers check on their own.

We would love to get your feedback and we hope you find it useful.

agordhandas5y ago

This looks cool! Very timely. Every time I update our AWS settings (or provision new users/resources), I spend a decent amount of time just worrying whether I inadvertently opened up everything to the web.

Any plans to support running this as a cron job and diffing successive outputs?

gsoltisOP5y ago

Good suggestion! The underlying tech actually does support diffing resources over time, so it would be very possibly to generate a delta report.

j / k navigate · click thread line to collapse

3 comments

gsoltisOP5y ago

We would love to get your feedback and we hope you find it useful.

agordhandas5y ago

Any plans to support running this as a cron job and diffing successive outputs?

gsoltisOP5y ago

Good suggestion! The underlying tech actually does support diffing resources over time, so it would be very possibly to generate a delta report.

j / k navigate · click thread line to collapse