All notable changes to the AWS Security Group Analysis Tool will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Multi-account AWS Security Group analysis across 14 target accounts
- Cross-account IAM role assumption for secure data collection
- Parallel processing for efficient data gathering across multiple regions
- Comprehensive security group rule analysis and categorization
- Automatic detection of public access rules (0.0.0.0/0)
- Risk scoring system (0-100 scale) for individual security group rules
- Vulnerability assessment for common high-risk ports (SSH, RDP, databases)
- Communication mapping between security groups
- Port usage analysis and protocol distribution
- Streamlit-based web interface for real-time analysis
- Network visualization graphs showing security group relationships
- Interactive filtering by account, region, and protocol
- Executive dashboard with key security metrics
- Tabbed interface for different analysis views
- CSV export functionality for all analysis results
- Executive summary reports with compliance scoring
- Detailed remediation recommendations
- Compliance reporting against security best practices
- Security group relationship mapping
- Unused security group identification
- Risk-based prioritization for remediation efforts
- Compliance scoring and status reporting
- Quick start script with menu-driven interface
- VS Code task integration for easy execution
- Comprehensive error handling and logging
- Progress indicators for long-running operations
- Complete setup and usage documentation
- AWS IAM configuration examples
- Troubleshooting guide
- Security best practices documentation
- Languages: Python 3.8+
- Dependencies: boto3, pandas, streamlit, plotly, networkx
- Architecture: Modular design with separate analysis and visualization components
- AWS Services: EC2 Security Groups, STS (for cross-account access)
- Supported Regions: All AWS commercial regions
- READ-ONLY operation mode (no modifications to AWS resources)
- Secure credential handling with AWS STS
- Cross-account access via IAM roles
- Comprehensive audit logging
- No sensitive data storage
- Support for 14 AWS accounts across multiple regions
- Configurable account and region selection
- Parallel processing for optimal performance
This is the initial release of the AWS Security Group Analysis Tool, designed for comprehensive security auditing across multiple AWS accounts. The tool provides both command-line analysis capabilities and an interactive web dashboard for visualization and reporting.