Nuvola

Nuvola (with the lowercase n) is a tool designed to perform both automatic and manual security analysis on the configurations and services of AWS environments. It utilizes predefined, extensible, and custom rules that are created using an easy-to-understand Yaml syntax.

The main objective of this project is to develop an abstracted digital twin of a cloud platform.

nuvola demonstrates the BloodHound traits utilized for Active Directory analysis, but specifically within cloud environments, currently limited to AWS.

Using a graph database enhances the ability to identify various and innovative attack paths. Additionally, it can serve as an offline, centralized, and lightweight digital twin. Quick Start Requirements: - Ensure docker-compose is installed. - Have an AWS account configured for use with awscli, providing full access to cloud resources. It is preferable to operate in ReadOnly mode (the policy arn:aws:iam::aws:policy/ReadOnlyAccess is suitable). Setup: - Clone the repository using the command: git clone --depth=1 https://github.com/primait/nuvola.git; then navigate into the directory with cd nuvola. - Create and edit, if necessary, the .env file to configure your database username, password, and URL: cp .env_example .env; You might need to adjust the memory allocation for Neo4j if you are running the tool on a device with limited RAM.