- Notifications
You must be signed in to change notification settings - Fork791
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
License
Netflix/security_monkey
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
- For AWS users, please make use ofAWS Config.
- For GCP users, please make use ofCloud Asset Inventory.
Security Monkey monitors yourAWS and GCP accounts for policy changes and alerts on insecure configurations. Support is available for OpenStack public and private clouds. Security Monkey can also watch and monitor your GitHub organizations, teams, and repositories.
It provides a single UI to browse and search through all of your accounts, regions, and cloud services. The monkey remembers previous states and can show you exactly what changed, and when.
Security Monkey can be extended withcustom account types,custom watchers,custom auditors, andcustom alerters.
It works on CPython 2.7. It is known to work on Ubuntu Linux and OS X.
| Develop Branch | Master Branch |
|---|---|
 |  |
 |  |
Netflix's support for Security Monkey has been reduced for minor bug fixes only. That being said, we are happy to accept and merge pull-requests that fix bugs and add new features as appropriate.
If you are upgrading to 1.0 for the first time, please review theQuickstart and theAutostartingdocuments as there is a new deployment pattern for Security Monkey. Also, new IAM permissions have been added.
- Security Monkey Architecture
- Quickstart
- User Guide
- Upgrading
- Changelog
- Source code
- Issue tracker
- Gitter.im Chat Room
- CloudAux
- PolicyUniverse
- Troubleshooting
The components that make up Security Monkey are as follows (not AWS specific):
Security Monkey accesses accounts to scan via credentials it is provided ("Role Assumption" where available).
About
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.