Skip to content

Comments

Lab6 submission: Basanov Maxim#6

Open
scruffyscarf wants to merge 2 commits intomainfrom
feature/lab6
Open

Lab6 submission: Basanov Maxim#6
scruffyscarf wants to merge 2 commits intomainfrom
feature/lab6

Conversation

@scruffyscarf
Copy link
Owner

@scruffyscarf scruffyscarf commented Oct 8, 2025
edited
Loading

Goal

Perform security analysis on vulnerable Infrastructure-as-Code using multiple scanning tools (tfsec, Checkov, Terrascan for Terraform; KICS for Pulumi and Ansible) and conduct comparative analysis to identify misconfigurations and security issues.

Changes

Added labs/lab6/analysis/ansible-analysis.txt
Added labs/lab6/analysis/checkov-terraform-report.txt
Added labs/lab6/analysis/checkov-terraform-results.json
Added labs/lab6/analysis/kics-ansible-report.html
Added labs/lab6/analysis/kics-ansible-report.txt
Added labs/lab6/analysis/kics-ansible-results.json
Added labs/lab6/analysis/kics-pulumi-report.html
Added labs/lab6/analysis/kics-pulumi-report.txt
Added labs/lab6/analysis/kics-pulumi-results.json
Added labs/lab6/analysis/pulumi-analysis.txt
Added labs/lab6/analysis/terraform-comparison.txt
Added labs/lab6/analysis/terrascan-report.txt
Added labs/lab6/analysis/terrascan-results.json
Added labs/lab6/analysis/tfsec-report.txt
Added labs/lab6/analysis/tfsec-results.json
Added labs/lab6/analysis/tool-comparison.txt
Added labs/submission6.md

Testing

No testing

Artifacts & Screenshots

labs/lab6
β”œβ”€β”€ analysis
β”‚   β”œβ”€β”€ ansible-analysis.txt
β”‚   β”œβ”€β”€ checkov-terraform-report.txt
β”‚   β”œβ”€β”€ checkov-terraform-results.json
β”‚   β”œβ”€β”€ kics-ansible-report.html
β”‚   β”œβ”€β”€ kics-ansible-report.txt
β”‚   β”œβ”€β”€ kics-ansible-results.json
β”‚   β”œβ”€β”€ kics-pulumi-report.html
β”‚   β”œβ”€β”€ kics-pulumi-report.txt
β”‚   β”œβ”€β”€ kics-pulumi-results.json
β”‚   β”œβ”€β”€ pulumi-analysis.txt
β”‚   β”œβ”€β”€ terraform-comparison.txt
β”‚   β”œβ”€β”€ terrascan-report.txt
β”‚   β”œβ”€β”€ terrascan-results.json
β”‚   β”œβ”€β”€ tfsec-report.txt
β”‚   β”œβ”€β”€ tfsec-results.json
β”‚   └── tool-comparison.txt
β”œβ”€β”€ submission6.md
└── vulnerable-iac
    β”œβ”€β”€ README.md
    β”œβ”€β”€ ansible
    β”‚   β”œβ”€β”€ configure.yml
    β”‚   β”œβ”€β”€ deploy.yml
    β”‚   β”œβ”€β”€ inventory.ini
    β”‚   └── kics-report
    β”œβ”€β”€ pulumi
    β”‚   β”œβ”€β”€ Pulumi-vulnerable.yaml
    β”‚   β”œβ”€β”€ Pulumi.yaml
    β”‚   β”œβ”€β”€ __main__.py
    β”‚   β”œβ”€β”€ kics-report
    β”‚   └── requirements.txt
    └── terraform
        β”œβ”€β”€ database.tf
        β”œβ”€β”€ iam.tf
        β”œβ”€β”€ main.tf
        β”œβ”€β”€ security_groups.tf
        └── variables.tf

Checklist

  • Task 1 done β€” Terraform & Pulumi scanning with multiple tools
  • Task 2 done β€” Ansible security analysis
  • Task 3 done β€” Comparative tool analysis and security insights
  • PR has a clear and descriptive title
  • Documentation has been updated if necessary
  • No sensitive data or large temporary files have been committed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@scruffyscarf