ScubaGoggles assesses whether the configuration of a GWS organization conforms to SCuBA's security baseline policies. It's in alpha development, meaning it's still being refined, and results should be reviewed carefully.
The tool primarily focuses on GWS Admin log events to check conformance with SCuBA baseline policies. It includes various Google services like Gmail, Calendar, Groups, Chat, Drive, and Meet. The tool is capable of generating HTML reports indicating whether GWS settings conform to SCuBA's baselines.
Installation involves setting up a Python virtual environment, downloading dependencies, and the Open Policy Agent (OPA) executable. The tool requires OAuth API scopes to be authorized, which necessitates a Google Cloud project and OAuth credentials. Users need to follow detailed instructions to set up the environment, manage permissions, and download necessary files.
The tool is executed via command line, with options to specify baselines, output paths, and other configurations. Users can assess all or specific components of GWS and generate reports in different formats. The tool supports both regular and cached run modes for different use cases.
ScubaGoggles relies on log events, so absence of logs for a particular setting might require manual verification against SCuBA baselines. Log retention limits might affect the visibility of some events. Testing in a newly created organizational unit is recommended for evaluating specific controls.
It provides an automated way to check GWS configurations against established security baselines. Helps organizations identify and rectify deviations from recommended security settings. Supports ongoing efforts to maintain and enhance cloud security postures in line with best practices.
For more detailed information and instructions on ScubaGoggles, visit the official GitHub repository or something
# Download ScubaGoggles
wget [URL_of_ScubaGoggles_latest_release.zip]
unzip scubagoggles-[latest-version].zip
cd scubagoggles-[latest-version]
# Install Python Dependencies
pip3 install virtualenv
virtualenv -p python3 .venv
source .venv/bin/activate
# Install Dependencies
# For running ScubaGoggles directly
python3 -m pip install .
# For running via scuba.py script
pip3 install -r requirements.txt
# Download OPA Executable
python download_opa.py -v 0.57.1 -os linux
chmod +x opa_linux_amd64_static # Make OPA executable