We know that keeping the targets you want to monitor for security weaknesses up to date can be a bit of a pain...
New instances are constantly being spun up in AWS, others are being closed down, keeping track of it all can easily become a full time job!
That's why we've created an AWS integration - add your Elastic IPs as Intruder targets directly from our portal! 🎉
Connect AWS to your Intruder Account
To get started, you'll need to log into the AWS IAM console. We recommend creating a new user in your AWS account to be used for integration with Intruder. When creating a new user, please ensure that Programmatic access is checked. The AWS guide on creating a new user an be found here.
The new user will need to be permissioned with at least the following AWS policies: 'IAMReadOnlyAccess', 'AmazonEC2ReadOnlyAccess'. Accounts with the 'AdministratorAccess' policy could instead be used, but this is not recommended.
Once your new user account is ready you'll need to generate an access/secret key pair. AWS have a guide on how to do this, here's the main steps:
- In the IAM console under Users, click on the new user's name
- Select the Security credentials tab
- Click Create access key in the Access keys section to create a key pair that consists of an Access key ID and Secret access key
- Take a note of both keys as you will need to add them to our portal
Now head to the Cloud section of our settings page:
Paste the Access key ID and Secret access key into the appropriate fields and click on the Add AWS account button. Voila! Now Intruder and AWS are integrated and you're ready to manage your cloud targets in the Intruder platform.
If you have multiple AWS accounts, the process above can be repeated to add each account you want to protect.
Once you've added an AWS account, you'll be able to see the Elastic IPs in the Add Cloud Targets popup on our targets page:
To add them for continuous monitoring, simply select the Elastic IPs you want as targets and click add.
Note: AWS integration is only available for customers on our Pro and Verified plans.