Creating A Security Bot
Step 1: Go to Bots Page, by Clicking on Bots
in the left panel.
Step 2: Click on +New
.
Step 3: Select Scheduled Bot
.
Step 4: Fill in the fields -
- Name: Enter a meaningful name for the bot,
to-make-s3-buckets-private
in this case. - Topic: Topic for the bot,
Making S3 Buckets Private
in this case. - Category: Select
Security
. - Importance: As you will be running this bot, you can choose whatever level of importance you prefer..
- Integration: Select AWS and the integration we connected earlier.
All the other fields are not necessary but you could fill them if you would like.
Step 5: Click on OK
.
Step 6: Select the fetcher we made earlier from the dropdown.
Step 7: Click on OK
.
Step 8: Click on +
on the side of the fetcher box.
Step 9: Click on the pen and paper symbol (edit symbol) of the next box the appeared (evaluator box).
Step 10: Click on +Rule
.
Step 11: In the new line, in the first dropdown (from the left), select isPublicWrite
.
Step 12: Carrying to the other dropdowns in the same line as in Step 11, in the second dropdown, select equal.
Step 13: in the third field, enter True
.
Now this rule takes all the S3 buckets that our fetcher brought for us and checks in those which buckets have their isPublicWrite
attribute set to True
& then sends them to the action.
Step 14: Click on OK
.
Step 15: Click on the +
on the evaluator box.
Step 16: Click on the edit symbol on the action box.
Step 17: Select the automation we created earlier from the dropdown.
Step 18: Click on OK
.
Step 19: Click on Create
.
Done!
Next step would be running the bot.