Tool and Usage
|Programming language||shell script|
|Latest release||No release found|
Why this tool?
Zeus is a tool to perform a quick security scan of an AWS environment. It helps to find missing security controls, so additional system hardening measures can be applied to systems.
How it works
Zeus runs a set of tests that individually look at how an AWS environment is configured. Within Identity and Access Management (IAM) it looks at several aspects regarding the usage of a root user, multi-factor authentication, and the password policy. It looks at common best practices that also apply to Linux systems in general, complemented by AWS specific settings.
The tool got initially a lot of traction, but its development seems to be stagnated during 2018.
Usage and audience
Zeus is commonly used for configuration audit, security assessment, self-assessment, or system hardening. Target users for this tool are security professionals and system administrators.
- Command line interface
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + Used language is shell script
- + The source code of this software is available
- - No releases on GitHub available
History and highlights
- Demo at Black Hat Asia 2018 Arsenal
Supported operating systems
Zeus is known to work on Linux and macOS.
Similar tools to Zeus:
Prowler is a security tool to perform security audits on AWS configurations. It helps to find configuration flaws and improve system hardening.
Lynis is a security auditing tool for systems running Linux, macOS, or Unix. It can be used for security assessments and configuration audits.
Otseca is a security tool that helps with gathering system information. It can be useful for penetration tests and security assessments, to automate some parts of the process.
This tool page was updated at . Found an improvement? Help the community by submitting an update.