IAM Policies

Ensure there are no EC2 AMIs set as Public
Description:  An Amazon Machine Image (AMI) is a template that contains the software configuration ( operating system, application server, and applications...
Mon, 13 Mar, 2023 at 8:43 AM
Ensure users of groups with AdministratorAccess policy have MFA tokens enabled
Description:  Multi-Factor Authentication (MFA) helps to protect your AWS resources. You can enable MFA for IAM users or the AWS account root user. IAM use...
Tue, 28 Mar, 2023 at 8:28 AM
Ensure there are no EBS Snapshots set as Public
Description: Elastic Block Store is a web service that provides block-level storage volumes for use with EC2 instances. EBS volumes are highly available an...
Mon, 21 Mar, 2022 at 5:17 AM
Ensure there are no S3 buckets open to the Everyone or Any AWS user
Description:  The Amazon S3 Block Public Access feature provides settings for access points, buckets, and accounts to help you manage public access to Amaz...
Tue, 28 Mar, 2023 at 7:43 AM
Ensure there are no Security Groups without ingress filtering being used
Description:  Ensure there are no Security Groups without ingress filtering being used. Security groups provide stateful filtering of ingress/egress networ...
Tue, 28 Mar, 2023 at 7:48 AM
Ensure every Security Group is being used by at least one resource
Description: A security group acts as a virtual firewall for the virtual machines and other resources running on cloud. They are created based on ports and...
Fri, 27 Aug, 2021 at 9:25 AM
Ensure Amazon Macie is enabled
Description: Macie is a security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS. Macie recognize...
Wed, 2 Mar, 2022 at 3:43 AM
Ensure CloudFront distributions have logging enabled
Description:  Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers g...
Thu, 3 Mar, 2022 at 4:40 AM
Ensure Required IAM Policies for IAM Roles Check
Description: You manage access in AWS by creating policies and attaching them to IAM identities (users, groups of users, or roles) or AWS resources. A poli...
Fri, 1 Apr, 2022 at 1:34 AM
Ensure Amazon Elasticsearch Service (ES) domains have logging enabled
Description:  Elasticsearch Service(ES) is a managed service that makes it easy to deploy, operate, and scale Elasticsearch, a popular open-source search, ...
Mon, 7 Mar, 2022 at 1:34 AM