CloudGuard — AWS Infrastructure Auditor
PythonAWS LambdaTerraformReactDynamoDBboto3
Overview
CloudGuard is an automated security auditing tool for AWS environments. It scans cloud infrastructure configurations against industry benchmarks and best practices, identifying security misconfigurations before they become vulnerabilities.
Key Features
- CIS Benchmark Scanning: Automated checks against 200+ CIS AWS Foundations Benchmark controls
- IAM Analysis: Deep analysis of IAM policies, roles, and permissions to identify overly permissive access
- Terraform Integration: Scans Terraform plans and state files to catch misconfigurations before deployment
- Remediation Playbooks: Generates step-by-step remediation guides with Terraform code snippets for fixing identified issues
- Slack Notifications: Real-time alerts for critical findings via Slack webhook integration
- Historical Tracking: Tracks security posture over time with trend analysis and compliance dashboards
Architecture
Built as a serverless application using AWS Lambda for scanning, DynamoDB for results storage, and a React dashboard for visualization. Scans are triggered on a schedule via EventBridge or on-demand via API Gateway.
Results
Identified an average of 47 misconfigurations per environment on initial scan. Helped reduce mean-time-to-remediation from 14 days to 3 days by providing actionable remediation guidance directly in the scan results.