Resolved! Twistlock扫描Github公共代码仓库示例
Twistlock扫描Github公共代码仓库示例
以github上其中⼀个public仓库 https://github.com/hashicorp/packer 为例:
1. 添加配置
或者:
PS. 下⾯Rules部分可以添加合规性规则
2. 保存
3.保存后会⾃动扫描
4.查看扫描结果, ⼀个是漏洞结果, ⼀个是合规性结果:
PS. 点击截图中红⾊圆圈的scan就可以⼿动触发扫描
Discussions
"Failed to resolve RBAC resources for defender" - Repeating defender ERRO in console logs.
Every 15 minutes for several agents from different k8s clusters, such an error appears in the console:
ERRO 2022-01-30T21:38:05.885 pubsub_defender.go:2154 Failed to resolve RBAC resources for defender *defender_name*: {*k8s_cluster_name* {Get "htt
...Enhanced auto-remediation
Hi Folks,
I use that enhanced auto-remediation (https://github.com/PaloAltoNetworks/Prisma-Enhanced-Remediation#getting-started) trying to auto remediate alerts detected in Prisma.
For some reasons some alerts that can not be remediated due to lack o
Serverless function Scan specific region
Hi Expert ,
I would like to know that we can specify some regions with not scan all-region for serverless function scan ? or in this case we will restrict account with IAM to specific region
Thank you
Prisma Cloud On Board Error
Hi all,
i'm trying to on board an AWS cloud account(i'm admin) on Prisma Cloud tenant (i'm system admin), but after successful creation of Read-only Role on AWS, with guided procedure, i get "not account owner" error (screenshot attached)
Someone
...
Resolved! Is the Palo Alto Prisma Cloud WAAS a host based WAF or a Runtime Application Self Protection (RASP) solution?
Hello,
I was curious if is the Palo Alto Prisma Cloud WAAS just a host based WAF or a Runtime Application Self Protection (RASP) solution? My idea is that RASP is getting popular as way to block 0 day server web attacks even without signatures us
...Resolved! Would love some filter help for IP Address
Hi guys,
So I know how to query EC2 instances for the private IP address, and that works fine.
I've come across a situation where I see an IP address in our AWS subnets doing something, but I can't track down what it is. It is not attached to an
...Error: Unable to ingest data from one or more accounts
Cloud account cannot be monitored due to missing permissions. Hit the Review button to see the current status and update settings. Error: Unable to ingest data from one or more services.
Resolved! Agentless scanning for AWS Workspace
Hello lovely user of Prisma Cloud,
Do you know if the new functionality Agentless Scanning is able to scan AWS Workspaces Windows ?
Thanks
RQL query to check for any Change in role for Instance
I am trying to create an RQL query, which will check if anyone attaches or modify roles to an AWS instance.
I am using the below Query :
event where cloud.account = 'My-AWS' AND operation = 'AddRoleToInstanceProfile'I did some testing on one of th
...Missing "Manage" submenu under compute in Prisma Cloud portal
I don't see any options or submenu available under compute of Prisma Cloud portal. Referring this link , trying to navigate compute > manage to find the console url or install host defender. However I don't see the any submenu options under compute.
...access to console
Something went wrong
Please try again and if you continue to see this error, please contact the Prisma Cloud team with the following error code: 9afadde495e84126b078b948fc517a2d
Port Scan Activity (External) too much noise but can there be a way to really Alert only on risky ports (config is vulnerable)
I got an AHA/Idea (aka RFE) for Prisma Cloud's Network Anomaly of Port Scan Activity (external) as Prisma Cloud just alerts as-is if someone is knocking at our door regardless if the port is secure otherwise.
We want some intelligence built-in to c
...Need to understand about SFTP server for file exchange monitoring
Hi Team,
Is this possible to use the Prisma Cloud tenants to monitor a resource in our GCP environment. This resource is an SFTP server for file exchange.
Kindly confirm on the details please.
Instance type: Prisma Enterprise edition
Prisma Clo
...
Copyright 2007 - 2022 - Palo Alto Networks