T-Mobile has released the new open source project PacBoot to help make computer systems safer through automated audits and compliance checks. The first PacBot release focuses on the security audit of Amazon AWS cloud setups. The tool can obtain data from Qualys Vulnerability Assessment Platform, Bitbucket, Trend Micro Deep Security, Tripwire, Venafi Certificate Management, Redhat Satellite, Spacewalk, and Active Directory. Beyond uncovering vulnerabilities, PacBot also offers solutions to many problems. To operate, PacBot requires multiple AWS services.
The PacBot code can be found on GitHub.