IAM Policies

Ensure there are no secrets in Lambda functions code
Description: AWS Security Hub provides you with a comprehensive view of the security state of your AWS resources. Security Hub collects security data fro...
Tue, 28 Apr, 2020 at 5:36 PM
Ensure EBS Default Encryption is activated
Description: Elastic Block Store is a web service that provides block-level storage volumes for use with EC2 instances. EBS volumes are highly available a...
Fri, 8 Apr, 2022 at 9:37 AM
Ensure there are no obsolete Lambda runtimes
Description: Lambda is a compute service that lets you run code without provisioning or managing servers. Lambda runs your function only when needed and sc...
Tue, 22 Mar, 2022 at 12:21 AM
Ensure S3 buckets have object versioning enabled
Description: S3 Object Versioning can be used to protect from unintended overwrites and deletions. Versioning helps to keep multiple variants of an object ...
Tue, 8 Mar, 2022 at 2:22 AM
Ensure IAM Access Analyzer is enabled and its findings
Description:  AWS IAM Access Analyzer helps you identify the resources in your organization and accounts, such as Amazon S3 buckets or IAM roles, that are ...
Fri, 4 Mar, 2022 at 5:32 AM
Ensure there are no empty IAM Groups
Description: You know user group is a collection of users. You can use user groups to specify permissions for a collection of users, which can make those p...
Fri, 22 Apr, 2022 at 12:33 AM
Ensure IAM users have Hardware MFA enabled
Description: The HTTPS protocol uses the SSL protocol to establish secure connections over the HTTP layer. You can also use the SSL protocol to establish s...
Fri, 11 Mar, 2022 at 3:15 AM
Check if IAM users have two active access keys
Description: Access keys consist of an access key ID and secret access key, which are used to sign in into AWS. AWS users need their access keys to make AP...
Wed, 23 Mar, 2022 at 12:06 AM
Ensure IAM Blacklisted Policies Check
Description: You manage access in AWS by creating policies and attaching them to IAM identities (users, groups of users, or roles) or AWS resources. A poli...
Wed, 6 Apr, 2022 at 2:15 AM
Ensure credentials unused for 30 days or greater are disabled
Description: AWS IAM users can access AWS resources using different types of credentials, such as passwords or access keys. It is recommended that all cred...
Mon, 25 Apr, 2022 at 2:09 AM