Anonymizing AWS Transform Discovery Tool Exports for Regulated Customers
Migration and Modernization Blog
This article introduces the Discovery Tool Anonymizer, a Python CLI tool that anonymizes sensitive infrastructure data from AWS Transform discovery tool exports for regulated customers.
- Anonymizes hostnames, IP addresses, MAC addresses, database names, and DNS names in discovery exports
- Preserves subnet relationships and consistency across multiple files for accurate analysis
- Generates bidirectional mapping file enabling full de-anonymization of assessment results
- Tool validates 1:1 mapping consistency and fails on collisions or ambiguities
- Simple workflow: anonymize export, upload to AWS Transform, de-anonymize results with mapping file
- Handles complex data formats: multiple CSV files and deeply nested JSON VMware vCenter data
- Available on AWS samples GitHub repository; requires Python 3.9+
The Discovery Tool Anonymizer enables regulated organizations to use AWS Transform Assessments without exposing sensitive infrastructure metadata, removing data governance barriers to migration planning.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.