PacBot – Policy as Code Bot

Policy as Code Bot (PacBot) is a platform for continuous compliance monitoring, compliance reporting and security automation for the cloud. security and compliance policies are implemented as code. All resources discovered are evaluated against these policies to gauge policy conformance.

The auto-fix framework provides the ability to automatically respond to policy violations by taking predefined actions. The framework packs a powerful visualization features, giving a simplified view of compliance and making it easy to analyze and remediate policy violations.

PacBot - Policy as Code Bot
PacBot – Policy as Code Bot

PacBot’s plugin-based data ingestion architecture allows ingesting data from multiple sources. There is a plan to release more plugins to integrate with third party security tools such as Qualys Vulnerability Assessment Platform, Bitbucket, TrendMicro Deep Security, Tripwire, Venafi Certificate Management, Redhat Satellite, Spacewalk, Active Directory and several other custom-built internal solutions.

PacBot Key Capabilities:

  • Continuous compliance assessment.
  • Detailed compliance reporting.
  • Auto-Fix for policy violations.
  • Omni Search – Ability to search all discovered resources.
  • Simplified policy violation tracking.
  • Self-Service portal.
  • Custom policies and custom auto-fix actions.
  • Dynamic asset grouping to view compliance.
  • Ability to create multiple compliance domains.
  • Exception management.
  • Email Digests.
  • Supports multiple AWS accounts.
  • Completely automated installer.
  • Customizable dashboards.
  • OAuth Support.
  • Azure AD integration for login.
  • Role-based access control.
  • Asset 360 degree.

You can read more an download this framework over here: https://github.com/tmobile/pacbot

Share