AWS New Checks

GuardDuty EKS Runtime Monitoring should be enabled
Description Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior. EKS Runtime Monitor...
Wed, 19 Mar, 2025 at 2:10 AM
EFS Access Points Should Enforce a User Identity
Profile Applicability: Level 1 Description: Amazon Elastic File System (EFS) access points provide application-specific entry points into an EFS file sy...
Wed, 19 Mar, 2025 at 8:36 AM
Check if GuardDuty Lambda Protection is enabled
Profile Applicability: Level 1                       Description: Amazon GuardDuty Lambda Protection provides threat detection for AWS Lambda functions...
Wed, 19 Mar, 2025 at 2:12 AM
GuardDuty EKS Audit Log Monitoring Enabled
Profile Applicability: Level 1 Description: Amazon GuardDuty EKS Audit Log Monitoring provides threat detection for Amazon Elastic Kubernetes Service (...
Wed, 19 Mar, 2025 at 2:12 AM
EFS Should Not Have Policies Allowing Unrestricted Access Within VPC
Profile Applicability: Level 1 Description: Amazon Elastic File System (EFS) supports resource-based policies that control access to the file system....
Wed, 19 Mar, 2025 at 2:56 AM
Ensure API Gateway V2 has Access Logging enabled.
Profile Applicability: Level 1 Description: API Gateway V2 allows you to manage and monitor HTTP, WebSocket, and other API services. Access logging p...
Wed, 19 Mar, 2025 at 2:35 AM
Check if Neptune DB clusters are configured to copy tags to snapshots
Profile Applicability: Level 2 Description: Amazon Neptune allows you to copy tags from your Neptune DB clusters to snapshots. Enabling Copy Tags to Sn...
Wed, 19 Mar, 2025 at 3:20 AM
Check for Neptune Clusters Backup Retention Period
Profile Applicability: Level 1 Description: Amazon Neptune provides automatic backups that can be retained for a configurable number of days. It i...
Wed, 19 Mar, 2025 at 3:37 AM
Check if Neptune Clusters have audit cloudwatch logs enabled
Profile Applicability: Level 1 Description: Amazon Neptune can publish audit logs, including query logs and slow query logs, to Amazon CloudWatch Log...
Wed, 19 Mar, 2025 at 3:54 AM
Check if Neptune Clusters storage has deletion protection enabled
Profile Applicability: Level 1 Description: Deletion Protection in Amazon Neptune prevents accidental or unauthorized deletion of Neptune clusters. W...
Wed, 19 Mar, 2025 at 4:20 AM