aws

package
v0.0.0-...-a4d6a82 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 1, 2023 License: Apache-2.0 Imports: 15 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func DeleteDefaultVPCs 

func DeleteDefaultVPCs(region string, role string, deleteFlag bool, isPrivileged bool) error

DeleteDefaultVPCs deletes all of the default VPCs in all regions of an account

func DisableSecurityHubGlobalResourceControls 

func DisableSecurityHubGlobalResourceControls(globalCollectionRegion string, role string, isPrivileged bool, isCloudTrailAccount bool) error

DisableSecurityHubGlobalResourceControls disables Security Hub controls related to Global Resources in regions that aren't collecting Global Resources. It also disables CloudTrail related controls in accounts that aren't the central CloudTrail account.

https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-cis-to-disable.html https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp-to-disable.html

func EnableGuardDutyAdministratorAccount 

func EnableGuardDutyAdministratorAccount(region string, administratorAccountRole string, rootRole string, autoEnableS3Protection bool) error

EnableGuardDutyAdministratorAccount enables the GuardDuty Administrator account within the AWS Organization

func EnableSecurityHubAdministratorAccount 

func EnableSecurityHubAdministratorAccount(region string, administratorAccountRole string, rootRole string) error

EnableSecurityHubAdministratorAccount enables the Security Hub Administrator account within the AWS Organization

func GetAccountID 

func GetAccountID(sess *session.Session) string

GetAccountID returns the AWS Account ID of the session

func GetAccountIDWithRole 

func GetAccountIDWithRole(sess *session.Session, role string) string

GetAccountIDWithRole returns the AWS Account ID of the session after assuming a role

func GetCreds 

func GetCreds(sess *session.Session, role string) *credentials.Credentials

GetCreds return credentials that can be used on a session

func GetEnabledRegions 

func GetEnabledRegions(region string, role string, isPrivileged bool) []string

GetEnabledRegions provides a list of AWS Regions that are enabled

func GetSession 

func GetSession() *session.Session

GetSession return a new AWS Session

func ListMemberAccountIDs 

func ListMemberAccountIDs(role string) []string

ListMemberAccountIDs provides a list of AWS Accounts that are members of the AWS Organization

Types

type AccountWithEmail 

type AccountWithEmail struct {
	AccountID string
	Email     string
}

AccountWithEmail contains AccountID and Email

func ListMemberAccountIDsWithEmails 

func ListMemberAccountIDsWithEmails(role string) []AccountWithEmail

ListMemberAccountIDsWithEmails provides a list of AWS Accounts that are members of the AWS Organization along with their email addresses

type SecurityHub 

type SecurityHub struct {
	// contains filtered or unexported fields
}

SecurityHub is a struct that represents an AWS Security Hub and attaches methods to perform various operations against it

type Vpc 

type Vpc struct {
	VpcID string
	// contains filtered or unexported fields
}

Vpc is a struct that represents an AWS VPC and attaches methods to delete subordanate resources

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.