Dow Jones Hammer : Protect The Cloud With The Power Of The Cloud(AWS)

Dow Jones Hammer is a multi-account cloud security tool for AWS. It identifies misconfigurations and insecure data exposures within most popular AWS resources, across all regions and accounts.

Dow Jones Hammer has near real-time reporting capabilities (e.g. JIRA, Slack) to provide quick feedback to engineers and can perform auto-remediation of some mis-configurations. This helps to protect products deployed on cloud by creating secure guardrails.

Security Features

• Insecure Services
• S3 ACL Public Access
• S3 Policy Public Access
• IAM User Inactive Keys
• IAM User Keys Rotation
• CloudTrail Logging Issues
• EBS Unencrypted Volumes
• EBS Public Snapshots
• RDS Public Snapshots
• SQS Public Policy Access
• S3 Unencrypted Buckets
• RDS Unencrypted Instances
• AMIs Public Access

Also Read – NoSQLMap : Automated NoSQL Database Enumeration & Web Application Exploitation Tool

Technologies

• Python 3.6
• AWS (Lambda, Dynamodb, EC2, SNS, CloudWatch, CloudFormation)
• Terraform
• JIRA
• Slack

Run Tests

Run tests with this command:

tox