92 lines
2.9 KiB
Python
Executable File
92 lines
2.9 KiB
Python
Executable File
# This file will help to serve as a starting point for using the rest of the tools
|
|
# Things we want to figure out
|
|
# 1) Is your key active?
|
|
# 2) If active, can you read monitoring configs, can you write?
|
|
# 3) Okay, you can read monitoring configs. We recommend things to avoid. Want to go further? Use write access to disable (if applicable)
|
|
# 4) Don't want to do anything with monitoring? That's fine, let's guide you through figuring out what your access looks like
|
|
# 5) Help with a printout of options from this point forward
|
|
|
|
import boto3
|
|
import argparse
|
|
import os
|
|
from botocore.exceptions import ClientError
|
|
from modules import *
|
|
import sys
|
|
|
|
os.environ['AWS_SHARED_CREDENTIALS_FILE'] = '.env'
|
|
|
|
sys.path.append("modules")
|
|
for module in all_modules:
|
|
exec("from %s import *" % module)
|
|
|
|
|
|
parser = argparse.ArgumentParser()
|
|
parser.add_argument("-m", "--module", help="list the module you would like to run", action="store", type=str, required=True)
|
|
parser.add_argument("-t", "--target", help="Give your target a name so we can track results", action="store", type=str, required=True)
|
|
parser.add_argument("-a", "--arguments", help="Provide a list of arguments, comma separated. Ex: arg1,arg2,arg3", action="store", type=str, required=False)
|
|
parser.add_argument("-l", "--list", help="list steps", action="store_true")
|
|
parser.add_argument("-v", "--verbosity", help="increase output verbosity", action="store_true")
|
|
args = parser.parse_args()
|
|
|
|
|
|
def perform_credential_check():
|
|
'''
|
|
Check that the AWS keys work before we go any further. It picks the keys up from the local .env file
|
|
We are letting boto3 do all the work that way we can handle session tokens natively
|
|
'''
|
|
|
|
try:
|
|
client = boto3.client("sts")
|
|
account_id = client.get_caller_identity()["Account"]
|
|
except botocore.exceptions.NoCredentialsError as e:
|
|
print("Error: Unable to locate credentials")
|
|
sys.exit("fix your credentials file -exiting...")
|
|
except ClientError as e:
|
|
print("The AWS Access Keys are not valid/active")
|
|
sys.exit(1)
|
|
|
|
|
|
def module_recon():
|
|
print("!!!")
|
|
|
|
|
|
def method_create():
|
|
try:
|
|
arg = globals()["module_" + args.step]
|
|
return arg
|
|
except KeyError:
|
|
print("That step does not exist")
|
|
exit(1)
|
|
|
|
|
|
# Need to figure out if we have keys in the ENV or not
|
|
try:
|
|
perform_credential_check()
|
|
except:
|
|
print("Please supply keys as outlined in our README.md file")
|
|
# exit(1)
|
|
|
|
if (args.list):
|
|
pass
|
|
|
|
|
|
# arg_list has to be defined otherwise will cause an exception
|
|
arg_list = None
|
|
|
|
if (args.arguments):
|
|
arg_list = args.arguments.split(',')
|
|
|
|
# We need the user to tell us the step they want to proceed on
|
|
if (args.step):
|
|
arg = method_create()
|
|
if callable(arg):
|
|
if arg_list:
|
|
arg(arg_list)
|
|
else:
|
|
arg()
|
|
|
|
|
|
# Allow the user to specify verbosity for debugging
|
|
if (args.verbosity):
|
|
print("Verbosity is enabled")
|