rkreddyp/security_review_checks.py

## security_review_checks.py
### Check Cloudtrail Configuration Across All Regions
region_arr = aws_helpers.get_region_array()
df_arr = []
for region in region_arr:
    cclient=boto3.client('cloudtrail',region_name=region)
    cdf = pd.DataFrame(cclient.describe_trails()['trailList'])
    cdf = cdf [[ 'Name', 'S3BucketName', 'IsMultiRegionTrail']]
    df_arr.append(cdf)
ctedf = pd.concat(df_arr)
display(HTML(ctedf.drop_duplicates().to_html(index=False)))

### Check Whether GuardDuty is Enabled Across All Regions
region_arr = aws_helpers.get_region_array()
df_arr = []
for region in region_arr:
    gdf = pd.DataFrame()
    try :
        gdclient = boto3.client('guardduty',region_name=region)
        if len (gdclient.list_detectors()['DetectorIds']) > 0 :
            gdf = pd.DataFrame(gdclient.list_detectors()['DetectorIds'], columns=['DetectorIds'])
            gdf['region']=region
        else :
            gdf['DetectorIds'] = "NA"
            gdf['region']=region

        df_arr.append(gdf)
    except :
        pass

gdconcatdf = pd.concat(df_arr)
	### Check Cloudtrail Configuration Across All Regions
	region_arr = aws_helpers.get_region_array()
	df_arr = []
	for region in region_arr:
	cclient=boto3.client('cloudtrail',region_name=region)
	cdf = pd.DataFrame(cclient.describe_trails()['trailList'])
	cdf = cdf [[ 'Name', 'S3BucketName', 'IsMultiRegionTrail']]
	df_arr.append(cdf)
	ctedf = pd.concat(df_arr)
	display(HTML(ctedf.drop_duplicates().to_html(index=False)))

	### Check Whether GuardDuty is Enabled Across All Regions
	region_arr = aws_helpers.get_region_array()
	df_arr = []
	for region in region_arr:
	gdf = pd.DataFrame()
	try :
	gdclient = boto3.client('guardduty',region_name=region)
	if len (gdclient.list_detectors()['DetectorIds']) > 0 :
	gdf = pd.DataFrame(gdclient.list_detectors()['DetectorIds'], columns=['DetectorIds'])
	gdf['region']=region
	else :
	gdf['DetectorIds'] = "NA"
	gdf['region']=region

	df_arr.append(gdf)
	except :
	pass

	gdconcatdf = pd.concat(df_arr)