CloudMapper Documentation - AWS Infrastructure Visualization Tool

CloudMapper Overview

CloudMapper is a Network Diagramming tool designed for AWS Architects, Security and Compliance teams, and DevOps Engineers. Delivered as a secure AMI via AWS Marketplace, it automatically discovers and visualizes your AWS network topology with zero configuration required.

Example network diagram generated by CloudMapper

AWS Marketplace Product: CloudMapper is delivered as a secure, FIPS-enabled AMI built on Amazon Linux 2023. SSH disabled by default - SSM access recommended. Optional SSH with ec2-user available for Marketplace scanning. Available in commercial AWS regions with GovCloud support planned.

Key Features

Zero Configuration Setup

No secrets or keys required! Instance auto-detects its region and uses EC2 instance role with minimal permissions (arn:aws:iam::aws:policy/ReadOnlyAccess and arn:aws:iam::aws:policy/AmazonSSMManagedInstanceCore).

Multi-Region Support

Supports multiple regions within a single account. Configure additional regions via the web interface - they'll appear in the dashboard dropdown.

Secure Access

SSH disabled by default. Recommended access via AWS Systems Manager (SSM). Optional hardened SSH with ec2-user for Marketplace scanning. Administrators can force 2FA or configure OIDC SSO integration.

FIPS Enabled

FIPS 140-2 enabled AMI built on Amazon Linux 2023 for government and enterprise compliance requirements.

AWS Marketplace

Available through AWS Marketplace in commercial regions. GovCloud support planned for government customers.

Export for Compliance

Generate network diagrams for your System Security Plans (SSP) and compliance reports with professional export options.

Supported AWS Components

Core Networking

Virtual Private Clouds (VPCs)
Public & Private Subnets
Route Tables & Routes
Availability Zones
CIDR Blocks & IP Addressing

Gateways & Connectivity

Internet Gateways (IGW)
NAT Gateways & NAT Instances
Transit Gateways (TGW)
VPC Peering Connections
VPN Gateways

VPC Endpoints

VPC Gateway Endpoints
VPC Interface Endpoints
Endpoint Service Names
Endpoint Connection Status
Endpoint Policy Information

Automatic Discovery: CloudMapper automatically discovers and maps all supported components in your selected AWS regions without any manual configuration.

Current Limitations & Roadmap

Single Account: Current version supports one AWS account per instance. Multi-account support is planned for future releases. Need multi-account support now? We offer custom development services - contact sales@buckshottech.com.

GovCloud Support: Currently available in commercial AWS regions. AWS GovCloud deployment is planned and coming soon.

Ready to get started? Check out our Installation Guide for detailed deployment instructions via AWS Marketplace.