IAM Policies

Ensure the providers SAML-Based Federation for API Access to AWS:
Description:  AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. You use IAM to control who...
Sun, 20 Mar, 2022 at 11:34 PM
Ensure S3 buckets have default encryption (SSE) enabled or use a bucket policy to enforce it
Description: Server-side encryption is the encryption of data at its destination by the application or service that receives it. AWS Key Management Service...
Wed, 16 Mar, 2022 at 5:42 AM
Ensure RDS instances storage is encrypted
Description:  Amazon Relational Database Service(Amazon RDS) is a web service that managed relational database service. It can encrypt your DB instances. F...
Fri, 31 Mar, 2023 at 4:22 AM
Ensure RDS instances have backup enabled
Description: RDS is a web service that makes it easier to set up, operate, and scale a relational database in the AWS Cloud. It provides cost-efficient, re...
Mon, 21 Mar, 2022 at 7:42 AM
Ensure EBS snapshots are encrypted
Description:  Snapshots are incremental backups, which means that only the blocks on the device that have changed since your most recent snapshot are saved...
Wed, 29 Mar, 2023 at 7:03 AM
Ensure API Gateway endpoint are not publicly accessible
Description: Amazon API Gateway is an AWS service for creating, publishing, maintaining, monitoring, and securing REST, HTTP, and WebSocket APIs at any sca...
Mon, 3 Apr, 2023 at 3:09 AM
Ensure RDS instances is integrated with CloudWatch Logs
Description: Amazon RDS is a web service that makes it easier to set up, operate, and scale a relational database in the AWS Cloud. It provides cost-effici...
Tue, 14 Mar, 2023 at 10:05 AM
Ensure EC2 Instances is not older than 6 months
Description:  Amazon EC2 enables you to share your AMIs with other AWS accounts. You can allow all AWS accounts to launch the AMI (make the AMI public), or...
Wed, 12 Apr, 2023 at 6:56 AM
Ensure EC2 Instances is not older than 12 months
Description:  Identify and re-launch any running AWS EC2 instances older than 12months to ensure their reliability. An EC2 instance is not supposed to run ...
Wed, 12 Apr, 2023 at 7:08 AM
Ensure there are no secrets in Lambda functions variables
Description: AWS Lambda is serverless compute service that runs your code in response to events and automatically manages the underlying compute resources ...
Tue, 22 Mar, 2022 at 1:00 AM