search

openraven / magpie

A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.
Apache License 2.0
174 stars 26 forks source link

CSPM Text Output Format #117

Closed kickroot closed 3 years ago

kickroot commented 3 years ago

Rather than the raw YAML output, format the default report into a more column-oriented approach containing scan metadata. A good example to follow is the old SourceClear scanner. Sample output can be found here: https://miro.medium.com/max/4000/0*vxP2YxGFBaG1y8N8.png

Features that would be good to see:

  1. Scan date/time/duration
  2. Total violations found
  3. The policies used in the scan
  4. For each violation show: policy name, rule name, rule GUID, resource id (ARN for amazon)
  5. One option to reduce column clutter is to break up the report by Policy Name, using the policy name as a title above the list of violations for each.

You may have to truncate policy and rule names to ensure they fit into the columns.

kickroot commented 3 years ago

Think human readable report more than a yaml dump.

stefansjfw commented 3 years ago

image

@kickroot Does this look good to you ?

kickroot commented 3 years ago

Nice work! :+1:

belosh59 commented 3 years ago

Already Done