MCPcopy
hub / github.com/nccgroup/ScoutSuite

github.com/nccgroup/ScoutSuite @5.14.0 sqlite

repository ↗ · DeepWiki ↗ · release 5.14.0 ↗
2,023 symbols 7,304 edges 532 files 282 documented · 14%
README

Workflow CodeCov

PyPI version PyPI downloads Docker Hub Docker Pulls

Description

Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments. Using the APIs exposed by cloud providers, Scout Suite gathers configuration data for manual inspection and highlights risk areas. Rather than going through dozens of pages on the web consoles, Scout Suite presents a clear view of the attack surface automatically.

Scout Suite was designed by security consultants/auditors. It is meant to provide a point-in-time security-oriented view of the cloud account it was run in. Once the data has been gathered, all usage may be performed offline.

The project team can be contacted at scoutsuite@nccgroup.com.

Cloud Provider Support

The following cloud providers are currently supported:

  • Amazon Web Services
  • Microsoft Azure
  • Google Cloud Platform
  • Alibaba Cloud (alpha)
  • Oracle Cloud Infrastructure (alpha)
  • Kubernetes clusters on a cloud provider (alpha)
  • DigitalOcean Cloud (alpha)

Installation

Refer to the wiki.

Usage

Scout Suite is run through the CLI:

Running Scout Suite

Once this has completed, it will generate an HTML report including findings and Cloud account configuration:

Scout Suite Report

The above report was generated by running Scout Suite against https://github.com/nccgroup/sadcloud.

Additional information can be found in the wiki. There are also a number of handy tools for automation of common tasks.

Core symbols most depended-on inside this repo

get
called by 876
ScoutSuite/providers/gcp/facade/basefacade.py
print_exception
called by 347
ScoutSuite/core/console.py
run_concurrently
called by 189
ScoutSuite/providers/utils.py
pass_condition
called by 157
ScoutSuite/core/conditions.py
get_non_provider_id
called by 91
ScoutSuite/providers/utils.py
get_client
called by 76
ScoutSuite/providers/aws/facade/utils.py
get
called by 72
ScoutSuite/providers/kubernetes/facade/base.py
get_all_pages
called by 53
ScoutSuite/providers/aws/facade/utils.py

Shape

Method 1,387
Class 453
Function 175
Route 8

Languages

Python95%
TypeScript5%

Modules by API surface

ScoutSuite/output/data/inc-scoutsuite/scoutsuite.js74 symbols
ScoutSuite/providers/aws/provider.py42 symbols
ScoutSuite/providers/aws/facade/ec2.py22 symbols
ScoutSuite/providers/aws/facade/iam.py21 symbols
ScoutSuite/providers/kubernetes/resources/workload.py18 symbols
ScoutSuite/providers/aws/facade/s3.py18 symbols
ScoutSuite/providers/gcp/facade/gce.py16 symbols
ScoutSuite/providers/gcp/resources/gke/clusters.py15 symbols
ScoutSuite/providers/gcp/resources/cloudsql/database_instances.py15 symbols
ScoutSuite/providers/base/provider.py15 symbols
ScoutSuite/providers/azure/facade/sqldatabase.py15 symbols
ScoutSuite/providers/aliyun/facade/ram.py15 symbols

Dependencies from manifests, versioned

aliyun-python-sdk-actiontrail2.0.0 · 1×
aliyun-python-sdk-core2.13.4 · 1×
aliyun-python-sdk-ecs4.16.10 · 1×
aliyun-python-sdk-kms2.6.0 · 1×
aliyun-python-sdk-ocs0.0.4 · 1×
aliyun-python-sdk-ram3.0.1 · 1×
aliyun-python-sdk-rds2.3.9 · 1×
aliyun-python-sdk-sts3.0.1 · 1×
aliyun-python-sdk-vpc3.0.5 · 1×
asyncio-throttle0.1.1 · 1×
azure-identity1.5.0 · 1×
azure-mgmt-authorization3.0.0 · 1×

For agents

$ claude mcp add ScoutSuite \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact