ScoutSuite Versions Save

Minor fixes

Changes:

• Added alpha support for Alibaba Cloud (Aliyun) and Oracle Cloud Infrastructure (OCI)
• Improved AWS & Azure support, including new services and findings
• Added the --exclude-regions parameter for AWS
  • This can be used to exclude optional regions, e.g. by passing --exclude-regions ap-east-1 me-south-1.
• Added support for AWS authentication with access keys (https://github.com/nccgroup/ScoutSuite/wiki/Amazon-Web-Services#cli-parameters)
• Added support to handle AWS rate limiting (through exponential backoff) as well as a configurable rate limiting parameter --max-rate)
• Improved finding rationales'
• Improved error handling
• Bug fixes

Changes:

• Adds GCP and Azure CIS benchmark rulesets
• Renames AWS CIS ruleset to cis-1.0.0.json
• Adds a number of GCP findings
• Improves the implementation of Azure's authentication strategy
• Updates to finding rationales and descriptions for all providers
• Updates to default rulesets for all providers
• Improves the UI
• Bug fixes, improved error handling

Changes:

• Update styling to NCC's standards
• Changes to the CLI
  • Removes the --vpc and --resume CLI arguments as they aren't implemented
    • --resume will be worked on in https://github.com/nccgroup/ScoutSuite/issues/88
  • Adds the following options:
    • --quiet flag to suppress CLI output
    • --logfile param to specify an additional file path to store output (supports --debug flag)
• Update the "Execution Details" section to be more generic and work with programatic executions.
• Updates to rulesets and findings
• Bug fixes

Changes:

• Numerous bug fixes
• Refer to 5.x beta releases for additional changes in 5.x

Breaking changes:

• Renamed Scout.py to scout.py

Changes:

• Refactored the GCP provider to the new architecture
• Added support for the AWS Config service
• Restored AWS resources removed in `5.0.0-beta1
• Added the --report-name CLI option
• Tweaked to automatic report naming
• Improved the client-server implementation (see https://github.com/nccgroup/ScoutSuite/wiki/Server)
• Fixed bugs
• Improved the UI/UX

• Python 2.7 and 3.4 have been deprecated
• The whole resources fetching architecture was refactored (see the documentation for more details) and AWS and Azure were migrated to that new architecture
• A new flag was added (--max-workers) which allows specifying the exact number of workers (threads) Scout will use. This will replace --thread-config, which is less verbose. The new flag can be used with Azure and AWS only as GCP has not yet been refactored.
• Performance was improved
• The logging system was refactored
• A Resources summary page was added (available through the top-right menu)
• UI improvements were made
• Bugs were fixed
• Some (AWS) resources that were not used for findings or surface attack analysis have been removed
  • EC2: customer_gateways, vpn_gateways, vpn_connections, route_tables, peering_connections
  • Route53: hosted_zones
  • SNS: subscriptions (already included in topics)
  • ELBv2: ssl_policies
  • ELB: elb_policies

• Opinel was removed as a dependency and integrated directly to the codebase.
• A with the menu highlighting was fixed
• Most of the warning were addressed
• Support for AWS was improved
• The default profile name for AWS was changed from 'default' to None. This will have an impact on the report files names.

Please note that python 2.x and 3.4 will soon be deprecated.

To learn more about why we are deprecating those versions of Python, see this thread: #183 .

Fixes a couple of bugs with the Pypi package.

• Azure support has been improved but is still considered alpha
• The --provider flag is now optional. If you do still explicitly specify it, it must be the first flag.
• Implemented new findings
• UI fixes and improvements