Dow Jones Hammer : Protect The Cloud With The Power Of The Cloud(AWS)

August 20, 2019

Dow Jones Hammer is a multi-account cloud security tool for AWS. It identifies misconfigurations and insecure data exposures within most popular AWS resources, across all regions and accounts.

Dow Jones Hammer has near real-time reporting capabilities (e.g. JIRA, Slack) to provide quick feedback to engineers and can perform auto-remediation of some mis-configurations. This helps to protect products deployed on cloud by creating secure guardrails.

Security Features

Insecure Services
S3 ACL Public Access
S3 Policy Public Access
IAM User Inactive Keys
IAM User Keys Rotation
CloudTrail Logging Issues
EBS Unencrypted Volumes
EBS Public Snapshots
RDS Public Snapshots
SQS Public Policy Access
S3 Unencrypted Buckets
RDS Unencrypted Instances
AMIs Public Access

Also Read – NoSQLMap : Automated NoSQL Database Enumeration & Web Application Exploitation Tool

Technologies

Python 3.6
AWS (Lambda, Dynamodb, EC2, SNS, CloudWatch, CloudFormation)
Terraform
JIRA
Slack

Run Tests

Run tests with this command:

tox

Download

Konan – Advanced Web Application Dir Scanner

Slyther : AWS Security Tool

Pineapple MK7 REST Client : WiFi Hacking Workflow With Pineapple Mark 7 API

CyberBattleSim : An Experimentation And Research Platform To Investigate

Top 7 Best Open Source SQL Injection Tools – 2019

EVEN MORE NEWS

Bomber : Navigating Security Vulnerabilities In SBOMs

EmbedPayloadInPng : A Guide To Embedding And Extracting Encrypted Payloads In...

Exploit Street – Navigating The New Terrain Of Windows LPEs

POPULAR CATEGORY

Prefetch-Hash-Cracker : A Small Util To Brute-Force Prefetch Hashes

Kali Linux 2020.3 Release (ZSH, Win-Kex, HiDPI & Bluetooth Arsenal) –...

NTLMRecon : Enumerate Information From NTLM Authentication Enabled Web Endpoints

APPLICATIONS

HOT NEWS

EVEN MORE NEWS

POPULAR CATEGORY