300+ checks covering industry defined security best practices across all AWS regions. Includes full support for multiple best practice benchmarks including PCI DSS, AWS Foundational Security, HIPAA, NIST 800-53, NIST CSF, Reserve Bank of India and the latest (v1.4.0) CIS benchmarks:
Includes support for:
- AWS CIS v1.3.0
- AWS CIS v1.4.0 🚀 New!
- HIPAA 🚀 New!
- NIST 800-53 Revision 4 🚀 New!
- NIST Cybersecurity Framework (CSF) 🚀 New!
- PCI DSS v3.2.1
- AWS Foundational Security Best Practices
- Reserve Bank of India (RBI) Cyber Security Framework 🚀 New!
- Download and install Steampipe (https://steampipe.io/downloads). Or use Brew:
brew tap turbot/tap
brew install steampipe
steampipe -v
steampipe version 0.5.1- Install the AWS plugin
steampipe plugin install aws- Clone this repo
git clone git@github.com:turbot/steampipe-mod-aws-compliance
cd steampipe-mod-aws-compliance- Generate your AWS credential report
aws iam generate-credential-report- Run all benchmarks:
steampipe check allRun an individual benchmark:
steampipe check benchmark.cis_v140Use Steampipe introspection to view all current controls:
steampipe query "select resource_name from steampipe_control;"
Run a specific control:
steampipe check control.cis_v130_2_1_1If you have an idea for additional compliance controls, or just want to help maintain and extend this mod (or others) we would love you to join the community and start contributing. (Even if you just want to help with the docs.)
- Join our Slack community → and hang out with other Mod developers.
- Mod developer guide →
Please see the contribution guidelines and our code of conduct. All contributions are subject to the Apache 2.0 open source license.
help wanted issues: