Metadata-Version: 2.1
Name: cinq-auditor-cloudtrail
Version: 1.1.9
Summary: CloudTrail auditor
Home-page: https://github.com/RiotGames/cinq-auditor-cloudtrail/
Author: Riot Games Security
Author-email: security@riotgames.com
License: Apache 2.0
Description: ***********************
        cinq-auditor-cloudtrail
        ***********************
        
        ===========
        Description
        ===========
        
        This auditor ensures that CloudTrail:
        
        * is enabled globally on multi-region
        * logs to a central location
        * has SNS/SQS notifications enabled and being sent to the correct queues
        * and that regional trails (of our chosen name) are not enabled
        
        =====================
        Configuration Options
        =====================
        
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | Option name              | Default Value  | Type   | Description                                                                                                  |
        +==========================+================+========+==============================================================================================================+
        | enabled                  | False          | bool   | Enable the CloudTrail auditor                                                                                |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | interval                 | 60             | int    | Run frequency in minutes                                                                                     |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | bucket_account           | CHANGE ME      | string | Name of the account (must exist), in which to create the S3 bucket where CloudTrail logs will be delivered   |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | bucket_name              | CHANGE ME      | string | Name of the S3 bucket to send CloudTrail logs to                                                             |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | bucket_region            | us-west-2      | string | Region where to enable global events logging                                                                 |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | global_cloudtrail_region | us-west-2      | string | Region where to enable the global CloudTrail                                                                 |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | sns_topic_name           | CHANGE ME      | string | Name of the SNS topic for CloudTrail log delivery                                                            |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | sqs_queue_account        | CHANGE ME      | string | Name of the account (must exist) which owns the SQS queue for CloudTrail log delivery notifications          |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | sqs_queue_name           | SET ME         | string | Name of the SQS queue                                                                                        |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | sqs_queue_region         | us-west-2      | string | Region for the SQS queue                                                                                     |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        | trail_name               | us-west-2      | string | Name of the CloudTrail trail region                                                                          |
        +--------------------------+----------------+--------+--------------------------------------------------------------------------------------------------------------+
        
Keywords: cloud security
Platform: UNKNOWN
Classifier: Development Status :: 4 - Beta
Classifier: Intended Audience :: System Administrators
Classifier: Intended Audience :: Information Technology
Classifier: License :: OSI Approved :: Apache Software License
Classifier: Programming Language :: Python :: 3.5
Classifier: Programming Language :: Python :: 3.6
Classifier: Framework :: Flask
Classifier: Framework :: Sphinx
Classifier: Operating System :: MacOS :: MacOS X
Classifier: Operating System :: POSIX :: Linux
Classifier: Operating System :: Unix
Classifier: Environment :: Console
Classifier: Natural Language :: English
Classifier: Topic :: Security
Classifier: Topic :: Utilities
Provides-Extra: dev
Provides-Extra: test
