AuroraSec is a high-performance, modular auditing utility designed to provide deep visibility into the security posture of AWS environments. Built with the AWS SDK for Go v2, it prioritizes speed, reliability, and actionable intelligence.
In a rapidly evolving cloud landscape, manual security audits are no longer sufficient. AuroraSec bridges the gap between complexity and security by offering:
- Lightning Fast Audits: Leveraging Go's concurrency for rapid scanning across multiple services.
- Modular by Design: Easily extendable architecture allowing for the addition of custom security modules.
- Compliance Focused: Built-in rules that align with AWS Best Practices and CIS Benchmarks.
- Operational Resilience: Integrated retry mechanisms and sophisticated error handling for stable execution in large-scale environments.
| Feature | Description |
|---|---|
| 🔒 IAM Hardening | Full audit of Root MFA, Account Password Policies, and Access Key health. |
| 📡 Network Guard | Continuous monitoring of Security Groups for "wide-open" (0.0.0.0/0) vulnerabilities. |
| 📦 S3 Sentinel | Automated validation of Bucket Public Access Blocks and Default Encryption. |
| 📊 Advanced Echo | Multi-format reporting including Interactive HTML, JSON, CSV, and CLI Tables. |
| 🏹 Ready for CI/CD | Native support for automated pipelines with exit-code based triggers. |
AuroraSec is designed around a plugin-style architecture where the core engine orchestrates independent security modules.
graph TD
CLI[AuroraSec CLI] --> Engine[Core Audit Engine]
Engine --> ModuleRegistry[Module Registry]
ModuleRegistry --> IAM[IAM Module]
ModuleRegistry --> S3[S3 Module]
ModuleRegistry --> NET[Networking Module]
Engine --> ReportGen[Reporting Engine]
ReportGen --> HTML[HTML Report]
ReportGen --> JSON[JSON Report]
ReportGen --> CSV[CSV Report]
ReportGen --> Table[Console Table]
go install github.com/ismailtsdln/AuroraSec/cmd/aurorasec@latestVisit our Releases page to download pre-compiled binaries for your operating system.
Run a comprehensive audit using your default AWS profile:
aurorasec auditAudit specific modules and generate an interactive HTML report:
aurorasec audit --modules iam,s3 --format html --output report.htmlGenerate a JSON output for integration with other security tools or SOC dashboards:
aurorasec audit --format json --output audit_results.json- Contributing: We value your contributions! Check out our CONTRIBUTING.md to get started.
- Reporting Vulnerabilities: Please review our SECURITY.md for our responsible disclosure policy.
- Questions?: Open an issue or join our community discussions.
Distributed under the MIT License. See LICENSE for more information.
Made with ❤️ for the Security Community