Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[PFR] Google Workspaces and Google Cloud #223

Open
jonrau1 opened this issue Feb 3, 2024 · 1 comment
Open

[PFR] Google Workspaces and Google Cloud #223

jonrau1 opened this issue Feb 3, 2024 · 1 comment
Assignees
@jonrau1
Labels
documentation Improvements or additions to documentation enhancement New feature or request
Projects
ElectricEye Roadmap

Comments

@jonrau1
Copy link
Owner

jonrau1 commented Feb 3, 2024

Story

As the maintainer of ElectricEye I want to update the GCP Auditors and CloudUtils so that I can expand coverage of GCP services and use different authentication mechanisms for improving my overall security posture. Additionally I want to include Google Workspaces as a new SSPM assessment target so that I can ensure proper configurations and monitor weaknesses in my Workspaces Directory.

Definition of Done

  • IF FEASIBLE change the Service Account Client creation process to not rely on a locally written file, or, at the very least delete it when you're done.
  • Add new GCP Auditors to cover BigQuery, Cloud Functions, and anything else in Expand GCP Auditors #108 that is feasible
  • Add new Google Workspaces Auditor
    • Update documentation section
    • Expand CloudUtils and EEAuditor for assessments
    • Directory API in scope: Users, Mobile Devices
    • Reports API in scope: Alert Center

Nice to Have

Research Workload Identity Federation for GCP
@jonrau1 jonrau1 added documentation Improvements or additions to documentation enhancement New feature or request labels Feb 3, 2024
@jonrau1 jonrau1 self-assigned this Feb 3, 2024
@jonrau1 jonrau1 added this to To do in ElectricEye Roadmap via automation Feb 3, 2024
@jonrau1
Copy link
Owner Author

jonrau1 commented Feb 19, 2024

This duplicates #108

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jonrau1 jonrau1

Labels
documentation Improvements or additions to documentation enhancement New feature or request
Projects
ElectricEye Roadmap
  
To do
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jonrau1