Skip to main content

mondoo shell aws

Connect to an AWS account or instance

Synopsis

Connect to an AWS account or EC2 instance. It will use your local AWS configuration for the account scan. See the subcommands to scan EC2 instances.

mondoo shell aws [flags]

Options

      --ask-pass                         ask for connection password
-c, --command string a command to run in the shell
-t, --connection string The connection is the identifier a way to reach the asset. Supported connections are 'local://', 'docker://' and 'ssh://'
--discover string enables the discovery of nested assets. Supported are 'all|auto|instances|host-instances|host-machines|container|container-images' (default "auto")
--discover-filter stringToString additional filter for asset discovery (default [])
-h, --help help for aws
--host-machines also scan host machines like ESXi server
-i, --identity-file string Selects a file from which the identity (private key) for public key authentication is read.
--insecure disables TLS/SSL checks or SSH hostkey config
--instances also scan instances (only applies to api targets like aws, azure or gcp)
--option stringToString addition connection options, multiple options can be passed in via --option key=value (default [])
-p, --password string connection password e.g. for ssh/winrm
--path string path to a local file or directory that the connection should use
--platform-id string select an specific asset by providing the platform id for the target
--profile string pick a named AWS profile to use
--region string the AWS region to scan
--sudo runs with sudo

Options inherited from parent commands

      --config string      config file (default is $HOME/.config/mondoo/mondoo.yml)
--log-level string set log-level: error, warn, info, debug, trace (default "info")
-v, --verbose verbose output

SEE ALSO