Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Asset Inventory][Azure] Add storage asset fetchers #2938

Merged
merged 26 commits into from
Jan 29, 2025
Merged

[Asset Inventory][Azure] Add storage asset fetchers #2938

merged 26 commits into from
Jan 29, 2025

Conversation

kubasobon
Copy link
Member

@kubasobon kubasobon commented Jan 21, 2025
edited
Loading

Summary of your changes

Introduces fetchers for:

  • Azure Storage Table Service
  • Azure Storage File Service
  • Azure Storage Table
  • Azure Storage File Share
  • Azure Storage Blob Container

Screenshot/Data

Screenshot 2025-01-22 at 15 08 33 Screenshot 2025-01-22 at 15 08 19 Screenshot 2025-01-22 at 13 27 03 Screenshot 2025-01-22 at 12 56 46 Screenshot 2025-01-22 at 12 27 56 Screenshot 2025-01-21 at 10 59 25 Screenshot 2025-01-21 at 10 59 15

Related Issues

Closes https://github.com/elastic/security-team/issues/10172

Checklist

  • I have added tests that prove my fix is effective or that my feature works
  • I have added the necessary README/documentation (if appropriate)

@mergify Mergify
Copy link

mergify bot commented Jan 21, 2025

This pull request does not have a backport label. Could you fix it @kubasobon? 🙏
To fixup this pull request, you need to add the backport labels for the needed
branches, such as:

  • backport-v./d./d./d is the label to automatically backport to the 8./d branch. /d is the digit
    NOTE: backport-v8.x has been added to help with the transition to the new branch 8.x.

@kubasobon kubasobon marked this pull request as ready for review January 22, 2025 14:30
@kubasobon kubasobon requested a review from a team as a code owner January 22, 2025 14:30
@kubasobon kubasobon requested review from orouz and a team January 28, 2025 09:31
orouz
orouz approved these changes Jan 28, 2025
View reviewed changes
internal/inventory/ASSETS.md
@@ -109,15 +109,17 @@ Storage Bucket: 100% (1/1)

## AZURE Resources

**Progress: 33% (18/54)**
**Progress: 42% (23/54)**
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💪

internal/inventory/asset.go
AssetClassificationAzureCosmosDBSQLDatabase = AssetClassification{CategoryInfrastructure, "Azure Cosmos DB SQL Database"}
AssetClassificationAzureDisk = AssetClassification{CategoryVolume, "Azure Disk"}
AssetClassificationAzureElasticPool = AssetClassification{CategoryDatabase, "Azure Elastic Pool"}
AssetClassificationAzureResourceGroup = AssetClassification{CategoryAccessManagement, "Azure Resource Group"}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sheet says the category for Azure Resource Group is Resource Group. IMO CategoryAccessManagement is a better fit, but just making sure this change is known?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pre-existing asset categories will be fixed in https://github.com/elastic/security-team/issues/11690

internal/inventory/asset.go
AssetClassificationAzureStorageQueueService = AssetClassification{CategoryMessagingService, "Azure Storage Queue Service"}
AssetClassificationAzureStorageTable = AssetClassification{CategoryDatabase, "Azure Storage Table"}
AssetClassificationAzureStorageTableService = AssetClassification{CategoryServiceUsageTechnology, "Azure Storage Table Service"}
AssetClassificationAzureSubscription = AssetClassification{CategoryAccessManagement, "Azure Subscription"}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sheet says Azure Subscription category is Account

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pre-existing asset categories will be fixed in https://github.com/elastic/security-team/issues/11690

internal/inventory/asset.go
AssetClassificationAzureStorageTable = AssetClassification{CategoryDatabase, "Azure Storage Table"}
AssetClassificationAzureStorageTableService = AssetClassification{CategoryServiceUsageTechnology, "Azure Storage Table Service"}
AssetClassificationAzureSubscription = AssetClassification{CategoryAccessManagement, "Azure Subscription"}
AssetClassificationAzureTenant = AssetClassification{CategoryAccessManagement, "Azure Tenant"}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sheet says Azure Tenant category is Organization

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pre-existing asset categories will be fixed in https://github.com/elastic/security-team/issues/11690

@kubasobon kubasobon merged commit 57ecd03 into elastic:main Jan 29, 2025
8 of 9 checks passed
@kubasobon kubasobon deleted the asset-inventory-azure-storage branch January 29, 2025 13:41
mergify bot pushed a commit that referenced this pull request Jan 29, 2025
@kubasobon @mergify
[Asset Inventory][Azure] Add storage asset fetchers (#2938)
181c560 
(cherry picked from commit 57ecd03)

# Conflicts:
#	internal/inventory/ASSETS.md
#	internal/inventory/asset.go
#	internal/inventory/cloud_assets.xlsx
#	tests/product/tests/data/azure_asset_inventory/test_cases.py
#	tests/product/tests/test_aws_asset_inventory.py
#	tests/product/tests/test_azure_asset_inventory.py
#	tests/product/tests/test_gcp_asset_inventory.py
@mergify mergify bot mentioned this pull request Jan 29, 2025
Closed
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@orouz orouz orouz approved these changes

Assignees

@kubasobon kubasobon

Labels
backport-v8.x
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@kubasobon @orouz