Prisma Cloud and Bridgecrew

Thursday. March 14, 2024 - 1 min

Prisma Cloud and Bridgecrew

Prisma Cloud

Palo Alto Prisma Cloud is currently offering workshops for prospective customers at https://www.paloaltonetworks.com/prisma/cloud-interactive. These workshops start with a sales pitch and end with a hands-on self-guided workshop. The the instructions for the workshops are at https://github.com/PaloAltoNetworks/prisma-cloud-bootcamps which I forked into a personal repo at https://github.com/MasonDenney/prisma-cloud-bootcamps.

Bridgecrew

Several years ago Palo Alto Networks acquired Bridgecrew. Bridgecrew created checkov as well as a few other tools. At the end of the workshop instructions you can find a list of vulnerable by design terraform repos by bridegecrew such as:

Prisma Cloud Terraform Providers

You can find all PaloAltoNetworks Providers here: https://registry.terraform.io/search/providers?q=PaloAltoNetworks

prismacloud = https://registry.terraform.io/providers/PaloAltoNetworks/prismacloud/latest
- Targets something like api1.prismacloud.io
prismacloud-waas = https://registry.terraform.io/providers/PaloAltoNetworks/prismacloud-waas/latest
- Targets something like api1.prismacloud.io
prismacloudcompute = https://registry.terraform.io/providers/PaloAltoNetworks/prismacloudcompute/latest
- Targets something like https://us-west1.cloud.twistlock.com/us-1-123456789

Prisma Cloud APIs

There are different APIs that have different URLs and schemas, enterprise docs at https://pan.dev/prisma-cloud/api/

CSPM = https://pan.dev/prisma-cloud/api/cspm/
- Targets something like api1.prismacloud.io
CAS = https://pan.dev/prisma-cloud/api/code/
- Targets something like api1.prismacloud.io
CWPP = https://pan.dev/prisma-cloud/api/cwpp/
- Targets something like https://us-west1.cloud.twistlock.com/us-1-123456789
- used by twistcli to get defenders

Mason Denney

Software Engineer