Giters

deepfence / terraform-aws-cloud-scanner

Deepfence Cloud Scanner runs in your cloud environment, gathering inventory and compliance information for the assets deployed in that environment. It submits that information to your Deepfence ThreatMapper or ThreatStryker Management Console

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

awsterraform

Cloud Scanner for AWS by Deepfence

This module deploys Deepfence cloud scanner for AWS by creating underlying resources in AWS.

Notice

  • Deployment cost This example will create resources that cost money.
    Run terraform destroy when you don't need them anymore

Required Permissions

Provisioning Permissions

User deploying the resources needs the below access on AWS-

  • ECS
  • VPC
  • CloudWatch
  • IAM

Usage

- Single-Account on ECS

Deepfence workload will be deployed in the same account where user's resources will be watched.

Please check out below to implement the same:

./examples/single-account-ecs

- Organizational

Deepfence workload will be deployed in a separate member account while scanning will be done in multiple member accounts.

Following is the method to deploy the same:

Authors

Module is maintained and supported by Deepfence.

License

Apache 2 Licensed. See LICENSE for full details.

About

Deepfence Cloud Scanner runs in your cloud environment, gathering inventory and compliance information for the assets deployed in that environment. It submits that information to your Deepfence ThreatMapper or ThreatStryker Management Console

awsterraform

License:Apache License 2.0

Languages

Language:HCL 100.0%