Skip to content

CrowdStrike/cloud-resource-estimator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

156 Commits
.github
.github
 
 
AWS
AWS
 
 
Azure
Azure
 
 
GCP
GCP
 
 
.gitignore
.gitignore
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
DEVELOPMENT.md
DEVELOPMENT.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
benchmark.sh
benchmark.sh
 
 
setup.cfg
setup.cfg
 
 

Repository files navigation

CrowdStrike Falcon

CrowdStrike CWP / Horizon Benchmark Utilities

These utilities have been developed to assist you in calculating the overall size of a cloud deployment.

Running an audit

The benchmark.sh entrypoint script helps you to perform sizing calculations for your cloud resources. It detects the cloud provider (AWS, Azure, or GCP) and downloads the necessary scripts to perform the calculation. You can also pass one or more cloud providers as arguments.

Configuration

The script recognizes the following environmental variables for AWS:

Variable Default Description
AWS_ASSUME_ROLE_NAME OrganizationAccountAccessRole IAM role name for cross-account access
AWS_REGIONS All regions Comma-separated list of regions to scan
AWS_THREADS 5 Number of concurrent account threads
AWS_BATCH_SIZE 20 Accounts processed per batch
AWS_BATCH_DELAY 30 Seconds to wait between batches
AWS_API_DELAY 0.1 Seconds to wait between API calls
AWS_MAX_RETRIES 5 Maximum retry attempts for failed operations
AWS_OPERATION_TIMEOUT 300 Timeout for individual operations (seconds)
AWS_RESUME_FILE aws_benchmark_progress.json Progress tracking file
AWS_SKIP_ACCOUNTS None Comma-separated list of account IDs to skip
AWS_DRY_RUN false Set to true to simulate without API calls

To use, please export variables in your environment prior to running the script:

export AWS_ASSUME_ROLE_NAME="Example-Role-Name"

Note: see AWS Readme for detailed configuration options.

Usage

./benchmark.sh [aws|azure|gcp]...

Below are two different ways to execute the script.

In Cloud Shell

To execute the script in your environment using Cloud Shell, follow the appropriate guide based on your cloud provider:

In your Local Environment

For those who prefer to run the script locally, or would like to run the script against more than one cloud provider at a time, follow the instructions below:

Requirements

  • Python 3
  • pip
  • curl
  • Approprate cloud provider CLI (AWS, Azure, GCP)

Steps

  1. Download the script:

    curl -O https://raw.githubusercontent.com/CrowdStrike/cloud-resource-estimator/main/benchmark.sh

  2. Set execution permissions:

    chmod +x benchmark.sh

  3. Example: Run the script against AWS and Azure:

    ./benchmark.sh aws azure

Alternatively, you can run the script directly from the URL:

  • Run the script against AWS and Azure:

    curl https://raw.githubusercontent.com/CrowdStrike/cloud-resource-estimator/main/benchmark.sh | bash -s -- aws azure

  • Run the script and let it determine the available cloud providers:

    curl https://raw.githubusercontent.com/CrowdStrike/cloud-resource-estimator/main/benchmark.sh | bash

Development

Please review our Developer Guide for more information on how to contribute to this project.

License

These scripts are provided to the community, for free, under the Unlicense license. As such, these scripts carry no formal support, express or implied.

Questions?

Please review our Code of Conduct and then submit an issue or pull request. We will address the issue as quickly as possible.

About

Cloud deployment size calculation utilities

Topics

benchmark falcon horizon crowdstrike cloud-auditing cspm cspm-benchmark crowdstrike-horizon crowdstrike-falcon

Resources

Readme

License

Unlicense license

Code of conduct

Code of conduct
Activity
Custom properties

Stars

22 stars

Watchers

9 watching

Forks

21 forks
Report repository

Contributors 11

Languages