Scout Suite
Intermediate to Advanced
Multi-cloud security auditing and misconfiguration detection
https://github.com/nccgroup/ScoutSuiteInstallation
# Install via pip
pip install scoutsuite
# Or clone repository
git clone https://github.com/nccgroup/ScoutSuite.git
cd ScoutSuite
pip install -r requirements.txt# Configure AWS credentials
aws configure
# Or use environment variables
export AWS_ACCESS_KEY_ID=your_access_key
export AWS_SECRET_ACCESS_KEY=your_secret_key
export AWS_DEFAULT_REGION=us-east-1Usage
Basic Usage
# AWS audit
scout aws
# Azure audit
scout azure --cli
# GCP audit
scout gcp --user-account
# All providers
scout aws azure gcp --cli --user-accountAdvanced Options
# Custom report name
scout aws --report-name company_audit_$(date +%Y%m%d)
# Specific services only
scout aws --services s3,iam,ec2
# Skip specific services
scout aws --skip-services cloudtrail,config
# Custom output directory
scout aws --report-dir /path/to/reports
# No browser opening
scout aws --no-browser
# Force overwrite existing report
scout aws --forceCustom Rules
# Use custom ruleset
scout aws --ruleset-name custom_rules.json
# List available rules
scout aws --list-services