Connect AWS Account
Register an account on dashboard.codeshield.io and sign-in to the platform.
Within the CodeShield app, click on the
Account Nameof your choice and your 12-digit
AWS Account ID. The
Account Namecan be any arbitrary identifier to label your account within CodeShield. The
AWS Account IDis the unique account identifier provided by AWS.
Connect Account. This will redirect you to the AWS console.
Ensure you are signed-in with the account you want CodeShield to connect to. Follow the instructions within AWS to deploy the provided CloudFormation template.
The template has been implemented carefully following least privilege. Connecting the account does only provide read access to meta-data within the account. I.e., CodeShield cannot access sensitive data inside data stores like databases or S3 buckets.
Wait for the completion of the CloudFormation deployment within AWS.
Don’t have a sensible account to scan? We recommend to test CodeShield on the open-source application DVSA, a deliberately vulnerable application aiming to aid security professionals to test their cloud security skills. You can deploy the application to a sandbox account and perform a CloudFormation stack scan to get results. A walkthrough of the results is detailed here.