Running automated security checks on AWS using Scout2 in a Docker container

I came across this tool and thought I’d give it a try out.

First, I created a new user in my AWS environment and applied the ReadOnly and SecurityAudit roles to it.

Then I decided to run the script in a Docker container. I’ve included instructions here in case you want to do the same.

The end result is a very useful static HTML report. Of course, it flagged some false positives, but is a good data point on how the environment is set up.