Skip to content

Future Developments and TODOs

Jump to bottom
Edoardo Rosa edited this page Sep 10, 2022 · 2 revisions

The following ideas and TODOs are not yet implemented.

  • Custom GUI
  • Enumerate module
  • Queries optimization
  • More support to Yaml schema with custom Cypher queries and more properties
  • VPCs and Security Group parsing to map possible network lateral movements
  • Link Security Group to VPCs to also get an overview of exposed services
  • S3 ACL and Policy parsing to check effective permissions not defined in IAM policies
  • Other AWS services support like EKS, ECS, load balancer, API Gateway, ElasticCache, etc.
  • Parse Constraints in IAM policies to increase the effectiveness of relationships
  • Implements all CIS controls Yaml rules for the supported services
  • Live synchronization to update the database with real-time changes on AWS to create alerts on specific operations

Call for action

nuvola is an open-source software that needs the help of all users to:

  • report bugs and issues
  • report new improvements
  • review issues and pull requests
  • fix bugs and issues
  • create new rules
  • improve the overall software quality
Clone this wiki locally