#!/usr/bin/python
# Pull all Security Group information
from MaltegoTransform import *
import boto.ec2
from init import load_credentials
creds = load_credentials()
REGION = creds[2]
m = MaltegoTransform()
# TODO: Is there a better way to do this ?
try:
conn = boto.ec2.connect_to_region(REGION, aws_access_key_id=creds[0], aws_secret_access_key=creds[1])
reservations = conn.get_all_instances()
for i in reservations:
group_nums = len(i.instances[0].groups)
for z in range(group_nums):
group_id = i.instances[0].groups[z].id
sg_name = conn.get_all_security_groups(group_ids=group_id)[0]
sec_rules = conn.get_all_security_groups(group_ids=group_id)[0].rules
ent = m.addEntity('matterasmus.AmazonEC2SecurityGroupName', str(sg_name).split(":")[1])
ent.addAdditionalFields("SecurityGroup", "Group ID", "strict", str(group_id))
rule_nums = len(sec_rules)
m.addUIMessage("Completed.")
except Exception as e:
#!/usr/bin/python
# Pull all Security Group information for an instance
from MaltegoTransform import *
import sys
import boto.ec2
from init import load_credentials
creds = load_credentials()
REGION = creds[2]
amazon_id = sys.argv[1]
searchquery = "Instance:" + amazon_id
m = MaltegoTransform()
try:
conn = boto.ec2.connect_to_region(REGION, aws_access_key_id=creds[0], aws_secret_access_key=creds[1])
reservations = conn.get_all_instances()
for i in reservations:
if str(i.instances[0]) == searchquery:
group_nums = len(i.instances[0].groups)
group_id = i.instances[0].groups[0].id
sg_name = conn.get_all_security_groups(group_ids=group_id)[0]
sec_rules = conn.get_all_security_groups(group_ids=group_id)[0].rules
ent = m.addEntity('matterasmus.AmazonEC2SecurityGroupName', str(sg_name).split(":")[1])
ent.addAdditionalFields("GroupID", "Group ID", "strict", str(group_id))
m.addUIMessage("Completed.")