├── GrapplerModules ├── data_processing.py ├── file_parser.py ├── intel.py ├── json_loader.py └── log_processing.py ├── LICENSE ├── README.md ├── cloudgrep ├── Dockerfile ├── LICENSE ├── README.md ├── cloudgrep.py ├── cloudgrep │ ├── __init__.py │ ├── __main__.py │ ├── cloud.py │ ├── cloudgrep.py │ └── search.py ├── readme │ └── Diagram.png ├── release │ ├── generate_linux_binary.sh │ ├── generate_osx_binary.sh │ └── generate_windows_binary.bat ├── requirements.txt ├── setup.cfg ├── setup.py └── tests │ ├── __init__.py │ ├── data │ ├── 000000 │ ├── 000000.gz │ ├── 000000.zip │ ├── 14_3.log │ ├── 26688_17.log │ ├── 35010_7.log │ ├── UTF-8-Test.txt │ ├── UTF-8-test_filename_ŀĔ_TH̘Ë͖́̉ ͠P̯͍̭O̚​N̐Y̡ H̸̡̪̯ͨ͊̽̅̾̎Ȩ̬̩̾͛ͪ̈́̀́͘ ̶̧̨̱̹̭̯ͧ̾ͬC̷̙̲̝͖ͭ̏ͥͮ͟Oͮ͏̮̪̝͍M̲̖͊̒ͪͩͬ̚̚͜Ȇ̴̟̟͙̞ͩ͌͝S̨̥̫͎̭ͯ̿̔̀ͅ.txt │ ├── apache_access.log │ ├── azure.json │ ├── azure_singleline.json │ ├── bad_azure.json │ ├── bad_cloudtrail.json │ ├── cloudtrail.json │ ├── cloudtrail_singleline.json │ └── yara.rule │ └── test_unit.py ├── data ├── data_sources.json └── queries.json ├── main.py └── requirements.txt /GrapplerModules/data_processing.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/GrapplerModules/data_processing.py -------------------------------------------------------------------------------- /GrapplerModules/file_parser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/GrapplerModules/file_parser.py -------------------------------------------------------------------------------- /GrapplerModules/intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/GrapplerModules/intel.py -------------------------------------------------------------------------------- /GrapplerModules/json_loader.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/GrapplerModules/json_loader.py -------------------------------------------------------------------------------- /GrapplerModules/log_processing.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/GrapplerModules/log_processing.py -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/README.md -------------------------------------------------------------------------------- /cloudgrep/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/Dockerfile -------------------------------------------------------------------------------- /cloudgrep/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/LICENSE -------------------------------------------------------------------------------- /cloudgrep/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/README.md -------------------------------------------------------------------------------- /cloudgrep/cloudgrep.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/cloudgrep.py -------------------------------------------------------------------------------- /cloudgrep/cloudgrep/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /cloudgrep/cloudgrep/__main__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/cloudgrep/__main__.py -------------------------------------------------------------------------------- /cloudgrep/cloudgrep/cloud.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/cloudgrep/cloud.py -------------------------------------------------------------------------------- /cloudgrep/cloudgrep/cloudgrep.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/cloudgrep/cloudgrep.py -------------------------------------------------------------------------------- /cloudgrep/cloudgrep/search.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/cloudgrep/search.py -------------------------------------------------------------------------------- /cloudgrep/readme/Diagram.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/readme/Diagram.png -------------------------------------------------------------------------------- /cloudgrep/release/generate_linux_binary.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/release/generate_linux_binary.sh -------------------------------------------------------------------------------- /cloudgrep/release/generate_osx_binary.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/release/generate_osx_binary.sh -------------------------------------------------------------------------------- /cloudgrep/release/generate_windows_binary.bat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/release/generate_windows_binary.bat -------------------------------------------------------------------------------- /cloudgrep/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/requirements.txt -------------------------------------------------------------------------------- /cloudgrep/setup.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/setup.cfg -------------------------------------------------------------------------------- /cloudgrep/setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/setup.py -------------------------------------------------------------------------------- /cloudgrep/tests/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /cloudgrep/tests/data/000000: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/000000 -------------------------------------------------------------------------------- /cloudgrep/tests/data/000000.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/000000.gz -------------------------------------------------------------------------------- /cloudgrep/tests/data/000000.zip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/000000.zip -------------------------------------------------------------------------------- /cloudgrep/tests/data/14_3.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/14_3.log -------------------------------------------------------------------------------- /cloudgrep/tests/data/26688_17.log: -------------------------------------------------------------------------------- 1 | 2021-08-24T14-32-58.244Z complete response 2 | -------------------------------------------------------------------------------- /cloudgrep/tests/data/35010_7.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/35010_7.log -------------------------------------------------------------------------------- /cloudgrep/tests/data/UTF-8-Test.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/UTF-8-Test.txt -------------------------------------------------------------------------------- /cloudgrep/tests/data/UTF-8-test_filename_ŀĔ_TH̘Ë͖́̉ ͠P̯͍̭O̚​N̐Y̡ H̸̡̪̯ͨ͊̽̅̾̎Ȩ̬̩̾͛ͪ̈́̀́͘ ̶̧̨̱̹̭̯ͧ̾ͬC̷̙̲̝͖ͭ̏ͥͮ͟Oͮ͏̮̪̝͍M̲̖͊̒ͪͩͬ̚̚͜Ȇ̴̟̟͙̞ͩ͌͝S̨̥̫͎̭ͯ̿̔̀ͅ.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/UTF-8-test_filename_ŀĔ_TH̘Ë͖́̉ ͠P̯͍̭O̚​N̐Y̡ H̸̡̪̯ͨ͊̽̅̾̎Ȩ̬̩̾͛ͪ̈́̀́͘ ̶̧̨̱̹̭̯ͧ̾ͬC̷̙̲̝͖ͭ̏ͥͮ͟Oͮ͏̮̪̝͍M̲̖͊̒ͪͩͬ̚̚͜Ȇ̴̟̟͙̞ͩ͌͝S̨̥̫͎̭ͯ̿̔̀ͅ.txt -------------------------------------------------------------------------------- /cloudgrep/tests/data/apache_access.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/apache_access.log -------------------------------------------------------------------------------- /cloudgrep/tests/data/azure.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/azure.json -------------------------------------------------------------------------------- /cloudgrep/tests/data/azure_singleline.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/azure_singleline.json -------------------------------------------------------------------------------- /cloudgrep/tests/data/bad_azure.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/bad_azure.json -------------------------------------------------------------------------------- /cloudgrep/tests/data/bad_cloudtrail.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/bad_cloudtrail.json -------------------------------------------------------------------------------- /cloudgrep/tests/data/cloudtrail.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/cloudtrail.json -------------------------------------------------------------------------------- /cloudgrep/tests/data/cloudtrail_singleline.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/cloudtrail_singleline.json -------------------------------------------------------------------------------- /cloudgrep/tests/data/yara.rule: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/data/yara.rule -------------------------------------------------------------------------------- /cloudgrep/tests/test_unit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/cloudgrep/tests/test_unit.py -------------------------------------------------------------------------------- /data/data_sources.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/data/data_sources.json -------------------------------------------------------------------------------- /data/queries.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/data/queries.json -------------------------------------------------------------------------------- /main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/main.py -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Permiso-io-tools/CloudGrappler/HEAD/requirements.txt --------------------------------------------------------------------------------