An open-source project built on Dgraph
Pulls from the Prisma Cloud API all the aws ec2 instances and the following associated data points:
- vulnerablities
- public ip addresses
- security groups
- vpcs
- ebs volumes
- iam permissions
- and more
Allows you to visualize and explore the data through a GraphQL interface with a backend Graph database.
non-prod ready
- Deployed on Ubuntu 20.04 desktop
- Requires jq, docker-compose, curl, bash, and docker
git clone https://github.com/kyle9021/pc-graph
cd pc-graph/
bash setup.sh- open browser and go to http://localhost:8001/?local
- If you're interested in understanding the WAAS policies in a graphDB go to http://localhost:8001/?local
- In the left-hand menu click "schema" and then click "bulk edit" on the top of the schema page.
- Check the box "Also drop Schema and Types" and in the text field type
DROP ALLand click "drop all" - After the data has been cleared
bash waas_policy_etl.sh
Above we can see the relationship between collections of assets, WAAS rules, api endpoints, request methods, etc.
See the Example writeup for a quick tutorial on how this was done.
For language specific ideas for those looking to collaborate see these links: