Dome9, also known as Checkpoint CloudGuard, is a cloud native security solutions for securing assets and workloads. At the core of this solution, CloudGuard Posture Management visualizes and assesses security posture, detects misconfigurations, automates and actively enforces standard policies (GDPR, HIPAA, ISO27001...), and protects against attacks and insider threats.
This repository contains a Python SDK of this tool. Initially its SDK did not have much functionality and that is why I developed this one to be able to work and include it within my Continuous Integration processes.
If you want to integrate Dome9 as part of your CI, check my other modules: Dome9 CLI and Agile.
pip install dome9
📚 Documentation: https://dome9.readthedocs.io/
There are two ways to authenticate:
- As Arguments: Passing variables on init ->
Dome9(key='xxxxxx', secret='yyyyyyy')
- As Environment variables: Setting your credentials as environment variables ->
DOME9_ACCESS_KEY
andDOME9_SECRET_KEY
from dome9 import Dome9
dome9 = Dome9(key='xxxxxx', secret='yyyyyyy')
rulesets = dome9.list_rulesets()
export DOME9_ACCESS_KEY='xxxxxxxxxxxxxxxxxxxx'
export DOME9_SECRET_KEY='yyyyyyyyyyyyyyyyyyyy'
python -c "from dome9 import Dome9; print(Dome9().list_rulesets())"
- 🌵 List all cloud accounts ->
dome9.list_cloud_accounts()
- 🌻 List AWS accounts ->
dome9.list_aws_accounts()
- 🌷 List KUBERNETES accounts ->
dome9.list_kubernetes_accounts()
- 🌼 Create ruleset ->
dome9.create_ruleset()
- 🌴 Create remediation ->
dome9.create_remediation()
- 🌲 Connect new AWS account ->
dome9.create_aws_account()
- 🌹 Run assessment ->
dome9.run_assessment()
- 🍀 List all your cloud assets ->
dome9.list_protected_assets()