AWS Services

Ensure AWS Shield is Advanced Enabled with Auto-Renew Check
Description: AWS Shield Advanced provides enhanced protections for your applications running on protected Amazon EC2, Elastic Load Balancing (ELB), Amazon ...
Thu, 31 Mar, 2022 at 3:32 AM
Ensure API Gateway SSL Enabled
Description: This policy checks if a REST API stage uses a Secure Sockets Layer (SSL) certificate. This rule is NON_COMPLIANT if the REST API stage does no...
Thu, 31 Mar, 2022 at 10:39 PM
Ensure Shield DRT Access Enabled
Description: AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. AWS Shield provid...
Fri, 1 Apr, 2022 at 12:44 AM
Ensure API Gateway Restricted to Source IPs
Description : Amazon API Gateway is an AWS service for creating, publishing, maintaining, monitoring, and securing REST, HTTP, and WebSocket APIs at any sc...
Fri, 1 Apr, 2022 at 3:38 AM
Ensure Lambda Code is Versioned Check
Description :  You can use versions to manage the deployment of your functions. For example, you can publish a new version of a function for beta testing w...
Fri, 1 Apr, 2022 at 5:10 AM
Ensure Application Load Balancer is dropping invalid packets to prevent header based http request smuggling
Description: The Application Load Balancer is a feature of Elastic Load Balancing that allows a developer to configure and route incoming end-user traffic ...
Wed, 6 Apr, 2022 at 2:30 AM
Ensure CloudWatch Alarm Action Check
Description: You can specify what actions an alarm takes when it changes state between the OK, ALARM, and INSUFFICIENT_DATA states. The most common type of...
Wed, 6 Apr, 2022 at 1:38 AM
Ensure Cloudfront distributions are using WAF
Description: AWS WAF is a web application firewall that helps protect your web applications or APIs against common web exploits that may affect availabilit...
Fri, 8 Apr, 2022 at 3:44 AM
Ensure Redshift Cluster Maintenance Settings Check
Description:  Amazon Redshift is a data warehouse service. It is a collection of computing resources called nodes, organized into a cluster called a cluste...
Fri, 8 Apr, 2022 at 4:46 AM
Ensure CloudWatch has allowed cross-account sharing
Description:   CloudWatch is a monitoring and management service that provides data and actionable insights for AWS, hybrid, and on-premises applications a...
Mon, 11 Apr, 2022 at 11:52 PM