Multicloud CIS Benchmarks with Prowler
Report on compliance maturity against the CIS Benchmarks across AWS, Azure, GCP, and Kubernetes.
Last updated
Report on compliance maturity against the CIS Benchmarks across AWS, Azure, GCP, and Kubernetes.
Last updated
To get started, grab the free PowerBI template from Securemetrics. A big thank you to the team at Prowler for sponsoring the template so that you can use it 100% free.
The template has the following components:
PowerBI Template File (.pbit) -> This template will ingest and build your report after you've run compliance scans in Prowler
Prowler has the ability to run multiple different compliance scans. For this template, run one or more of the following CIS Benchmark scans. Make sure to run the correct version.
Amazon Web Services (AWS)
CIS Amazon Web Services Foundations Benchmark
v4.0.1
cis_4.0_aws
Microsoft Azure
CIS Microsoft Azure Foundations Benchmark
v3.0.0
cis_3.0_azure
Google Cloud Platform (GCP)
CIS Google Cloud Platform Foundation Benchmark
v3.0.0
cis_3.0_gcp
Kubernetes
CIS Kubernetes Benchmark
v1.8.0
cis_1.8_kubernetes
After running a compliance scan, Prowler will store a csv output in a folder. This is usually found in the filepath/output/compliance
If using Prowler CLI, the filepath will be noted:
You'll need to move all desired compliance outputs into a single folder. All compliance scans in this folder will be ingested into the PowerBI Report.
Once you have your Prowler compliance outputs (csv files) in a designated folder, you are ready to setup your PowerBI report!
Open the PowerBI template file by clicking on it
After loading, you will be prompted to input the following parameter:
Ensure the filepath entered do not include quotation marks (""). Windows will include them by default if using the "copy as filepath" option. Ensure you are providing the full filepath, and not a relative path.
Prowler Output
The full filepath to the Prowler Output folder containing the compliance scan outputs (.csv) from Prowler
C:\Users\User1\ProwlerOutput
Yes
After entering the parameter, PowerBI will load your data and populate the report.
If PowerBI finds that outputs for one or more providers were not included, you will be warned that the data for that provider will be excluded. Click on "continue" to continue ingesting the data.
That's it! You now have the PowerBI report up and running. Click on save to save the report.