awslabs / assisted-log-enabler-for-aws Goto Github PK
View Code? Open in Web Editor NEWAssisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.
License: Apache License 2.0
Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.
License: Apache License 2.0
Add support to ALE to turn on logs for Amazon Verified Access.
Currently, ALE does not implement pagination. This is problematic because there is a non-zero chance that some accounts will have more resources than are provided back from a describe API in a single API call. In this case, ALE would not turn on logging for all of these resources.
For multi-account deployments, add option to allow user to specify CSV file containing a list of AWS accounts to include or exclude based on switch e.g --includeaccounts --excludeaccounts
Add the ability to create VPC Flow Logs that are stored in Parquet format.
Boto3 documentation for the DestinationOptions for create_flow_logs: https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/ec2.html#EC2.Client.create_flow_logs
Similar to the other logging types, it'd be great to have support for R53 Resolver query logging, since customers typically like to view VPC flow logs and their DNS logs in tandem.
Issue to create a cleanup function for the resources created by Assisted Log Enabler for AWS.
Cleanup for:
Add random string to end of bucket name to help with S3 bucket attribution.
Request to increase log retention time from 365 days to 400 days for additional analysis in relation to current month.
Break up the AWS service function options in argparse
Issue to add function for the resources created by Assisted Log Enabler for AWS.
S3 access logging
Provide the ability within the Assisted Log Enabler for AWS to use a preexisting S3 bucket for storing the logs.
Add support for additional AWS partitions. This includes GovCloud, China, and the forthcoming European Sovereign Cloud
Add support to turn on logs for Amazon Bedrock. The prompts should be stored in S3. TBD whether they should be stored in a separate bucket or the same bucket as other ALE logs due to the potential for sensitive data to be included in the prompts.
To check what would be done without actually making any changes.
Fix issue with CloudTrail enablement logic
As I see the tool covers some aws resources. Will future releases target all aws resources like ec2 instance etc as well?
https://docs.aws.amazon.com/elasticloadbalancing/index.html
In priority:
This will require logging to cloudwatch, which is a good initial target, no need in the short term to enable logging to S3
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.