nccgroup / ScoutSuite

Multi-Cloud Security Auditing Tool
GNU General Public License v2.0
6.78k stars 1.07k forks source link

Add support for Alibaba Cloud #291

Open x4v13r64 opened 5 years ago

x4v13r64 commented 5 years ago

The python SDK is relatively mature: https://pypi.org/project/aliyun-python-sdk-core/ https://github.com/aliyun/aliyun-openapi-python-sdk

Configure profiles: https://www.alibabacloud.com/help/doc-detail/43039.htm?spm=a2c63.p38356.879954.4.50f84f5cZ4ms46

TODO - look at the below references and identify issues to implement:

x4v13r64 commented 5 years ago

Identity and Access Management

ActionTrail

Object Storage Service (OSS)

BLOCKED the current version of the library (0.0.4) doesn't support much

VPC

[security groups. ACLs, etc.]

ECS

Load Balancer

RDS

(find a couple of issues)

KMS