Dev Add Cloud tools (cloudsplaining, cloudsploit and prowler)

sources/assets/zsh/aliases.d/cloudsploit

@@ -0,0 +1 @@
+alias cloudsploit='/opt/tools/cloudsploit/index.js'

sources/assets/zsh/history.d/cloudsplaining

@@ -0,0 +1,8 @@
+cloudsplaining download
+cloudsplaining download --profile someprofile
+cloudsplaining scan --input-file default.json
+cloudsplaining scan --input-file default.json --exclusions-file exclusions.yml
+cloudsplaining scan-policy-file --input-file examples/policies/wildcards.json
+cloudsplaining scan-policy-file --input-file examples/policies/wildcards.json  --exclusions-file examples/example-exclusions.yml
+cloudsplaining create-multi-account-config-file -o accounts.yml
+cloudsplaining scan-multi-account -c accounts.yml -r TargetRole --output-directory ./

sources/assets/zsh/history.d/prowler

@@ -0,0 +1,8 @@
+prowler aws --checks s3_bucket_public_access
+prowler aws --services s3 ec2
+prowler aws --profile custom-profile -f us-east-1 eu-south-2
+prowler azure --sp-env-auth
+prowler azure --az-cli-auth
+prowler azure --browser-auth
+prowler azure --managed-identity-auth
+prowler gcp --credentials-file path

sources/install/package_cloud.sh

@@ -55,9 +55,38 @@ function install_scout() {
     add-to-list "scout,https://github.com/nccgroup/ScoutSuite,Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments."
 }
 
+function install_cloudsplaining() {
+    colorecho "Installing Cloudsplaining"
+    python3 -m pipx install cloudsplaining
+    add-history cloudsplaining
+    add-test-command "cloudsplaining --help"
+    add-to-list "cloudsplaining,https://github.com/salesforce/cloudsplaining,AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report."
+}
+
+function install_cloudsploit() {
+    colorecho "Installing Cloudsploit"
+    git -C /opt/tools/ clone --depth 1 https://github.com/aquasecurity/cloudsploit
+    cd /opt/tools/cloudsploit && npm install && chmod +x index.js
+    add-aliases cloudsploit
+    add-history cloudsploit
+    add-test-command "cloudsploit -h"
+    add-to-list "cloudsploit,https://github.com/aquasecurity/cloudsploit,Cloud Security Posture Management"
+}
+
+function install_prowler() {
+    colorecho "Installing Prowler"
+    python3 -m pipx install prowler
+    add-history prowler
+    add-test-command "prowler -h"
+    add-to-list "prowler,https://github.com/prowler-cloud/prowler,Perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness."
+}
+
 # Package dedicated to cloud tools
 function package_cloud() {
     install_kubectl
     install_awscli
     install_scout       # Multi-Cloud Security Auditing Tool
-}
+    install_cloudsplaining
+    install_cloudsploit
+    install_prowler
+}