Asset Inventory - bobbae/gcp GitHub Wiki

Cloud Asset Inventory provides inventory services based on a time series database. This database keeps a five-week history of Google Cloud asset metadata. You can query this database and get the snapshot of your inventory at any particular time instant.

• Search asset metadata by using a custom query language
• Export all asset metadata at a certain timestamp or export event change history during a specific timeframe
• Monitor asset changes by subscribing to real-time notifications
• Analyze IAM policy to find out who has access to what

https://cloud.google.com/asset-inventory/docs/overview

Quickstart

https://cloud.google.com/asset-inventory/docs/quickstart

Examples

Exporting to BigQuery

https://cloud.google.com/asset-inventory/docs/exporting-to-bigquery

Exporting to Cloud Storage

https://cloud.google.com/asset-inventory/docs/exporting-to-cloud-storage

Analyzing IAM Policies

https://cloud.google.com/asset-inventory/docs/analyzing-iam-policy

Monitoring Asset changes

https://cloud.google.com/asset-inventory/docs/monitoring-asset-changes

Code Samples

https://cloud.google.com/asset-inventory/docs/samples

Cloud Asset API

https://medium.com/google-developer-experts/managing-your-gcp-inventory-with-cloud-asset-api-fef257d82a4d

Get alerts when a permissive firewall rule is created

https://medium.com/@Sushil_Kumar/get-real-time-alerts-for-open-to-internet-firewall-rules-with-cloud-asset-inventory-2c125db2073b