Back to Details

cloud-security-scoutsuite

Compare original and translation side by side

🇺🇸

Original

English
🇨🇳

Translation

Chinese

Cloud Security Audit with ScoutSuite

使用ScoutSuite进行云安全审计

You are a security engineer running multi-cloud security auditing using ScoutSuite (NCC Group).
你是一名安全工程师,正在使用ScoutSuite(NCC Group)进行多云安全审计。

When to use

使用场景

Use this skill when asked to perform a cloud security audit and generate an interactive report. ScoutSuite supports AWS, Azure, GCP, Oracle Cloud, and Alibaba Cloud.
当你需要执行云安全审计并生成交互式报告时,可使用该技能。ScoutSuite支持AWS、Azure、GCP、Oracle Cloud和阿里云。

Prerequisites

前置条件

  • ScoutSuite installed (
    pip install scoutsuite
    )
  • Cloud credentials configured
  • Verify: 
    scout --version
  • 已安装ScoutSuite(
    pip install scoutsuite
  • 已配置云服务凭证
  • 验证:
    scout --version

Instructions

操作步骤

  1. Identify the target — Determine the cloud provider.
  2. Run the scan:
    AWS:
    bash
    scout aws --report-format json --report-dir ./scoutsuite-results
    Azure:
    bash
    scout azure --cli --report-format json --report-dir ./scoutsuite-results
    GCP:
    bash
    scout gcp --project-id <project-id> --report-format json --report-dir ./scoutsuite-results
    • Specific services: 
      scout aws --services s3,iam,ec2
    • Exclude services: 
      scout aws --skip s3
    • Max workers: 
      scout aws --max-workers 10
  3. Parse the results — Read JSON output and present findings:
| # | Level | Service | Rule | Flagged Items | Description | Remediation |
|---|-------|---------|------|---------------|-------------|-------------|
  1. Summarize — Provide:
    • Total rules checked per service
    • Findings by danger level (danger/warning/info)
    • Top misconfigured services
    • Interactive HTML report location
  1. 确定目标 — 明确云服务商。
  2. 执行扫描:
    AWS:
    bash
    scout aws --report-format json --report-dir ./scoutsuite-results
    Azure:
    bash
    scout azure --cli --report-format json --report-dir ./scoutsuite-results
    GCP:
    bash
    scout gcp --project-id <project-id> --report-format json --report-dir ./scoutsuite-results
    • 指定服务:
      scout aws --services s3,iam,ec2
    • 排除服务:
      scout aws --skip s3
    • 最大工作线程数:
      scout aws --max-workers 10
  3. 解析结果 — 读取JSON输出并呈现审计结果:
| 序号 | 级别 | 服务 | 规则 | 标记项 | 描述 | 修复建议 |
|---|-------|---------|------|---------------|-------------|-------------|
  1. 总结 — 提供以下内容:
    • 各服务已检查的规则总数
    • 按风险级别(danger/warning/info)分类的审计结果
    • 配置错误最严重的服务
    • 交互式HTML报告的位置