dowjones/hammer

Stars
435
Rank 100,085 (Top 2 %)
Language
Python
License
Other
Created over 6 years ago
Updated over 1 year ago

dowjones/hammer

dowjones

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)

Overview

Dow Jones Hammer is a multi-account cloud security tool for AWS. It identifies misconfigurations and insecure data exposures within most popular AWS resources, across all regions and accounts. It has near real-time reporting capabilities (e.g. JIRA, Slack) to provide quick feedback to engineers and can perform auto-remediation of some misconfigurations. This helps to protect products deployed on cloud by creating secure guardrails.

Documentation

Dow Jones Hammer documentation is available via GitHub Pages at https://dowjones.github.io/hammer/.

Security features

Technologies

Python 3.6
AWS (Lambda, Dynamodb, EC2, SNS, CloudWatch, CloudFormation)
Terraform
JIRA
Slack

Contributing

You are welcome to contribute!

Issues:

You can use GitHub Issues to report issues. Describe what is going on wrong and what you expect to be correct behaviour.

Patches:

We currently use dev branch for ongoing development. Please open PRs to this branch.

Run tests:

Run tests with this command:

tox

Contact Us

Feel free to create issue report, pull request or just email us at [email protected] with any other questions or concerns you have.

intentionjs

A library for intentionally dealing with responsive design

react-dropdown-tree-select

Lightweight, accessible, customizable and fast Dropdown Tree Select component for React

fiveby

make selenium tests easier to setup, write, and execute

gulp-bundle-assets

Create static asset (js, css) bundles from a config file: a common interface to combining, minifying, revisioning and more

react-cellblock

react-based grid for smarter components

svg-text

A JavaScript library for creating multiline SVG <text> elements. Works seamlessly alongside SVG manipulation libraries such as Snap.svg and D3.

tokendito

Generate temporary AWS credentials via Okta.

graphql-dynamodb-connections

DynamoDB pagination to GraphQL Connection adapter.

react-picture-show

Slideshow Component

react-json-schema-proptypes

Define React propTypes with JSON schema, then introspect and fake props

distribucache

Datastore-independent automatically-repopulating cache.

react-inline-style

Reusable and adaptable components without external css dependency.

reapsaw

Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple programming languages.

slack-slash

Framework for handling slash commands in Slack

k8s-webhook

Companion code for a DJ Tech blog post https://medium.com/dowjones/how-did-that-sidecar-get-there-4dcd73f1a0a4

slack-slash-jira

Slack slash command handler for Jira.

Bigtable-dotnet

.NET client for Google Bigtable

factiva-news-python

Python package to interact with Factiva news-related APIs. Services are described in the Dow Jones Developer Platform.

graphql-rest-connections

This library helps with pagination in GraphQL, when backed by REST services.

respawn

AWS CloudFormation Template generator from Yaml specifications.

DOMCapture

Capture DOM element as image 📷

react-tutorial

Dow Jones Technology: React Tutorial Session

envprops

Environment-specific property configuration library.

developer-platform

Dow Jones Developer Platform repository index.

dynamic-inset-renderer-node

Node.js dynamic inset renderer

CoolScrollSample

dj-dna-streams-python

Python library for the DNA Streams API.

factiva-sample-notebooks

Set of Jupyter Notebooks that shows how to use the Factiva packages published in PyPi.

Jupyter Notebook

dynamic-inset-renderer

A client-side javascript renderer for dynamic insets

di

Battle tested Node.js dependency injector

react-stuck

React component which loosely implements `position: sticky`

opensearch-blog

Building a distributed tracing pipeline with open telemetry collector, data prepper, Jaeger and OpenSearch

featureling

Feature handling package to assist in versioning an api or application

tabletop-clearcoat

Easy caching for tabletop-based google spreadsheets usage.

slush-fiveby

generator for https://github.com/dowjones/fiveby projects

RegionFlow

RegionFlow flows content into a region with fixed width and height.

distribucache-redis-store

A Redis datastore for Distribucache

dj-dna-streams-javascript

JavaScript library for the DNA Streams API.

lease

A memory (RAM) time-released lock for asynchronous resources.

namespaced-console-logger

Minimal namespaced stdout / stderr logger with a timestamp for the browser and Node.js.

glass-tabletop

A clearer view into data from Google Spreadsheets

react-draggable-list

A React component that enables a list of items to be reordered via drag and drop.

distribucache-memory-store

A memory (RAM) datastore for Distribucache

dynamic-inset-renderer-php

PHP renderer for dynamic insets

distribucache-stats

Distribucache statistics gathering library

lru-cache-pool

Pool of LRU caches

suppress-error

Wraps a function, suppresses node-style errors, and surfaces them in the value.

factiva-taxonomy-visualisation

Quick exercise to have an idea on how to analyse Dow Jones DNA (Factiva) hierarchies.

Jupyter Notebook

rover-runner

A VSCode extension to streamline local development with Apollo Studio and the Rover CLI

gulp-bundle-assets-example-aspnet-5

using gulp-bundle-assets for front-end concat, minify, uglify, etc

passport-http-encrypted-token

HTTP Encrypted Token authentication strategy for Passport and Node.js

rpm-extract

Programmatically extract files from rpm packages

generator-slack-slash

Yeoman generator for slack-slash app and handler plugins.

distribucache-console-logger

Distribucahce stdout / stderr logger

factiva-core-python

Python package with root definitions and dictionaries, to support other functional packages.