Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 6d2417a

Browse files
h3xar0nh3xar0n
authored
update steps to eventbridge integration
1 parent 659a38a commit 6d2417a

File tree

1 file changed

+5
-4
lines changed

1 file changed

+5
-4
lines changed

docs/programs/aws-security-hub-integration.md

Lines changed: 5 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -70,9 +70,11 @@ The custom action in Security Hub uses EventBridge to forward specific findings
7070
Ensure that you have met all of the above [Prerequisites](#prerequisites).
7171

7272
1. Create an API token and identifier for the HackerOne API. (https://docs.hackerone.com/programs/api-tokens.html). Only use the identifier for this integration so it is clear that the API calls are coming from your AWS account and no other source.
73-
1. Input the API keypair securely to your Terraform build, either using secure write-only variables in Terraform Cloud or an ephemeral form when you deploy the build locally. See Terraform’s documentation for guidance on storing credentials in state. (https://www.terraform.io/docs/language/state/sensitive-data.html) As always, do not commit tfstate in git, as it contains secrets in plaintext.
74-
1. Input the region where you’ve enabled Security Hub, the account ID, and the account secret into Terraform.
75-
1. <CFT build>
73+
1. Run `aws cloudformation deploy --template-file eventbridgerule.yml --stack-name <STACK_NAME> --capabilities CAPABILITY_IAM`, and input the identifier and API token from the step above.
74+
1. Navigate to [AWS Security Hub > Settings > Custom Actions](https://console.aws.amazon.com/securityhub/home#/settings/actions).
75+
1. Click **Create custom action**.
76+
1. Set *Action name* to `Send to HackerOne` and the *Description* to anything you like.
77+
1. Set *Custom action ID* to `SendFindingToH1` ⚠️ Important: you must use this ID in order to connect to the rule in the template ⚠️.
7678
1. To verify a successful setup, test out the steps below.
7779

7880
### Usage
@@ -84,4 +86,3 @@ Ensure that you have met all of the above [Prerequisites](#prerequisites).
8486
1. Switch to your program at HackerOne, and see the findings listed under new reports.
8587

8688
Contact your HackerOne program team if you have any issues creating tokens for the HackerOne API, and contact AWS Support if you have any issues with resources in your AWS account.
87-

0 commit comments

Comments
 (0)