Creating A Security Bot
- Step 1: Go to Bots Page, by clicking on
Bots
in the left panel. - Step 2: Click on
+New
. - Step 3: Select
Scheduled Bot
. - Step 4: Fill in the fields:
- Name: Enter a meaningful name for the bot,
to-make-s3-buckets-private
in this case. - Topic: Topic for the bot,
Making S3 Buckets Private
in this case. - Category: Select
Security
. - Importance: As you will be running this bot, you can choose whatever level of importance you prefer.
- Integration: Select AWS and the integration we connected earlier. All the other fields are optional, but you may fill them if you wish.
- Step 5: Click on
OK
. - Step 6: Select the fetcher we made earlier from the dropdown.
- Step 7: Click on
OK
. - Step 8: Click on
+
on the side of the fetcher box. - Step 9: Click on the pen and paper symbol (edit symbol) of the next box that appeared (evaluator box).
- Step 10: Click on
+Rule
. - Step 11: In the new line, in the first dropdown (from the left), select
isPublicWrite
. - Step 12: Continue to the other dropdowns in the same line as in Step 11. In the second dropdown, select
equal
. - Step 13: In the third field, enter
True
.
Now this rule takes all the S3 buckets that our fetcher brought for us, checks which buckets have their isPublicWrite
attribute set to True
, and then sends them to the action.
- Step 14: Click on
OK
. - Step 15: Click on the
+
on the evaluator box. - Step 16: Click on the edit symbol on the action box.
- Step 17: Select the automation we created earlier from the dropdown.
- Step 18: Click on
OK
. - Step 19: Click on
Create
.
Done!
Next step would be running the bot.