TEXAS A&M UNIVERSITY
Steampipe
Audience: Cloud Engineers and Security teams.
Purpose: Query cloud APIs using SQL for inventory, compliance, and analysis.
Overview
Steampipe is an open-source zero-ETL engine that enables you to query cloud APIs using standard SQL. It provides:
- Unified SQL interface across cloud providers
- Real-time data without data pipelines
- Extensive plugin ecosystem
Resources
| Resource | Link |
|---|---|
| Steampipe Home | steampipe.io |
| AWS Plugin | hub.steampipe.io/plugins/turbot/aws |
| aiphelper | github.com/aggie-innovation-platform/aiphelper |
Use Cases
| Use Case | Description |
|---|---|
| Cloud Inventory | Query all resources across accounts |
| Compliance Checks | Validate security configurations |
| Cost Analysis | Identify unused or underutilized resources |
| Security Posture | Find misconfigurations and policy violations |
Example Queries
List All S3 Buckets
select
name,
region,
creation_date
from
aws_s3_bucket;
Find Public S3 Buckets
select
name,
bucket_policy_is_public
from
aws_s3_bucket
where
bucket_policy_is_public;
EC2 Instances by Type
select
instance_type,
count(*) as count
from
aws_ec2_instance
group by
instance_type
order by
count desc;