widdix / Aws S3 Virusscan
Licence: apache-2.0
Antivirus for Amazon S3 buckets
Stars: ✭ 400
Programming Languages
java
68154 projects - #9 most used programming language
Projects that are alternatives of or similar to Aws S3 Virusscan
Ssm Cache Python
AWS System Manager Parameter Store caching client for Python
Stars: ✭ 177 (-55.75%)
Mutual labels: aws, aws-s3, amazon-web-services
serverless-data-pipeline-sam
Serverless Data Pipeline powered by Kinesis Firehose, API Gateway, Lambda, S3, and Athena
Stars: ✭ 78 (-80.5%)
Mutual labels: aws-s3, amazon-web-services
Flopnite Ue4
A remake of the popular battle royale game, Fortnite, made in Unreal Engine 4 and integrated with Amazon GameLift
Stars: ✭ 250 (-37.5%)
Mutual labels: aws, amazon-web-services
Aws Auto Cleanup
Open-source application to programmatically clean your AWS resources based on a whitelist and time to live (TTL) settings
Stars: ✭ 276 (-31%)
Mutual labels: aws, amazon-web-services
Aws Security Toolbox
AWS Security Tools (AST) in a simple Docker container. 📦
Stars: ✭ 241 (-39.75%)
Mutual labels: aws, amazon-web-services
Aws Etl Orchestrator
A serverless architecture for orchestrating ETL jobs in arbitrarily-complex workflows using AWS Step Functions and AWS Lambda.
Stars: ✭ 245 (-38.75%)
Mutual labels: aws, amazon-web-services
Spark Jupyter Aws
A guide on how to set up Jupyter with Pyspark painlessly on AWS EC2 clusters, with S3 I/O support
Stars: ✭ 259 (-35.25%)
Mutual labels: aws, aws-s3
Chaos Ssm Documents
Collection of AWS SSM Documents to perform Chaos Engineering experiments
Stars: ✭ 225 (-43.75%)
Mutual labels: aws, amazon-web-services
Amazon Rekognition Video Analyzer
A working prototype for capturing frames off of a live MJPEG video stream, identifying objects in near real-time using deep learning, and triggering actions based on an objects watch list.
Stars: ✭ 309 (-22.75%)
Mutual labels: aws, amazon-web-services
Storage
💿 Storage abstractions with implementations for .NET/.NET Standard
Stars: ✭ 380 (-5%)
Mutual labels: aws, aws-s3
S3mock
A simple mock implementation of the AWS S3 API startable as Docker image, JUnit 4 rule, or JUnit Jupiter extension
Stars: ✭ 332 (-17%)
Mutual labels: aws, aws-s3
Node S3 Uploader
Flexible and efficient resize, rename, and upload images to Amazon S3 disk storage. Uses the official AWS Node SDK for transfer, and ImageMagick for image processing. Support for multiple image versions targets.
Stars: ✭ 237 (-40.75%)
Mutual labels: aws, aws-s3
Complete Aws Iam Reference
Complete AWS IAM Reference
Stars: ✭ 236 (-41%)
Mutual labels: aws, amazon-web-services
Nuxt Serverless
Nuxt.js Serverless SSR Starter on AWS (Lambda + API Gateway + S3) with Serverless Framework
Stars: ✭ 235 (-41.25%)
Mutual labels: aws, aws-s3
Code
Code of Amazon Web Services in Action, 1st edition
Stars: ✭ 254 (-36.5%)
Mutual labels: aws, amazon-web-services
Aws Microservices Deploy Options
This repo contains a simple application that consists of three microservices. Each application is deployed using different Compute options on AWS.
Stars: ✭ 370 (-7.5%)
Mutual labels: aws, amazon-web-services
Retinal
🏙 Retinal is a Serverless AWS Lambda service for resizing images on-demand or event-triggered
Stars: ✭ 208 (-48%)
Mutual labels: aws, aws-s3
Docs
Rapid CloudFormation: Modular, production ready, open source.
Stars: ✭ 209 (-47.75%)
Mutual labels: aws, amazon-web-services
Antivirus for S3 buckets
You can connect as many buckets as you like by using S3 Event Notifications
The VirusScan for Amazon S3 with additional integrations is available in the AWS Marketplace.
Features
- Uses ClamAV to scan newly added files on S3 buckets
- Updates ClamAV database every 3 hours automatically
- Scales EC2 instance workers to distribute workload
- Publishes a message to SNS in case of a finding
- Delete infected files if needed
- Logs to CloudWatch Logs
Additional Commercial Features
- S3 -> SNS -> VirusScan for Amazon S3 support
- Multi-Account support
- Quarantine infected files
- CloudWatch Integration (Metrics and Dashboard)
- Security Hub Integration
- SSM OpsCenter Integration
The VirusScan for Amazon S3 with additional integrations is available in the AWS Marketplace.
How does it work
A picture is worth a thousand words:
- A SQS queue is used to decouple scan jobs from the ClamAV workers. Each S3 bucket can fire events to that SQS queue in case of new objects. This feature of S3 is called S3 Event Notifications.
- The SQS queue is consumed by a fleet of EC2 instances running in an Auto Scaling Group. If the number of outstanding scan jobs reaches a threshold a new ClamAV worker is automatically added. If the queue is mostly empty workers are removed.
- The ClamAV workers run a simple ruby script that executes the clamscan command. In the background the virus db is updated every three hours.
- If
clamscan
finds a virus the file is directly deleted (you can configure that) and a SNS notification is published.
Installation
Create the CloudFormation Stack
- This templates depends on one of our
vpc-*azs.yaml
templates. Launch Stack - Launch Stack
- Click Next to proceed with the next step of the wizard.
- Specify a name and all parameters for the stack.
- Click Next to proceed with the next step of the wizard.
- Click Next to skip the Options step of the wizard.
- Check the I acknowledge that this template might cause AWS CloudFormation to create IAM resources. checkbox.
- Click Create to start the creation of the stack.
- Wait until the stack reaches the state CREATE_COMPLETE
Configure the buckets
Configure the buckets you want to connect to as shown in the next figure:
Make sure you select the -ScanQueue- NOT the -ScanQueueDLQ-!
Configure E-Mail subscription
If you like to receive emails if a virus was found you must subscribe to the SNS topic as shown in the next two figures:
You will receive a confirmation email.
The VirusScan for Amazon S3 with additional integrations is available in the AWS Marketplace.
Troubleshooting
- Go to CloudWatch Logs in the AWS Management Console
- Click on the log group of the s3-virusscan
- Click on the blue Search Log Group button
- Search for
"s3-virusscan["
Known issues / limitations
- It was reported that the solution does not run on a t2.micro or smaller. Use at least a t2.small instance.
- An initial scan may also be useful but is not performed at the moment. This could be implemented with a Lambda function that pushes every key to SQS.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].