AWS New Checks

Step Functions state machines should have logging enabled
Profile Applicability: Level 1 Description: AWS Step Functions is a service that enables you to coordinate multiple AWS services into serverless workfl...
Tue, 1 Apr, 2025 at 7:19 AM
Security Groups created by EC2 Launch Wizard
Profile Applicability: Level 1 Description: When launching an EC2 instance using the EC2 Launch Wizard (e.g., via the AWS Management Console), Security...
Tue, 1 Apr, 2025 at 7:22 AM
Check Public Lambda Function URL
Profile Applicability: Level 1 Description: AWS Lambda allows you to create Function URLs, which can be used to invoke your Lambda functions directly o...
Tue, 1 Apr, 2025 at 7:26 AM
Ensure Instance Metadata Service Version 2 (IMDSv2) is enforced for EC2 instances at the account level to protect against SSRF vulnerabilities.
Profile Applicability: Level 1 Description: The Instance Metadata Service (IMDS) provides information about the EC2 instance such as instance ID, secur...
Tue, 1 Apr, 2025 at 7:31 AM
Check Lambda Function URL CORS configuration
Profile Applicability: Level 2 Description: Lambda Function URLs are a feature of AWS Lambda that allows you to invoke Lambda functions over HTTP(S) us...
Tue, 1 Apr, 2025 at 7:32 AM
Ensure no security groups allow ingress from 0.0.0.0/0 or ::/0 to MySQL port 3306.
Profile Applicability: Level 1 Description: MySQL typically uses TCP port 3306 for client connections. Allowing unrestricted access to port 3306 from t...
Tue, 1 Apr, 2025 at 7:39 AM
Check for EC2 Instances with Public IP.
Profile Applicability: Level 1 Description: An EC2 instance can be assigned a public IP address (either via Elastic IP or through the default public IP...
Tue, 1 Apr, 2025 at 10:56 PM
Ensure security groups with more than 50 ingress or egress rules.
Profile Applicability: Level 1 Description: Security Groups in AWS control inbound and outbound traffic to EC2 instances. Each security group has ingre...
Tue, 1 Apr, 2025 at 11:10 PM
Ensure no security groups allow ingress and egress from wide-open IP address with a mask between 0 and 24.
Profile Applicability: Level 1 Description: Security Groups in AWS define the inbound and outbound traffic rules for EC2 instances. These rules can all...
Tue, 1 Apr, 2025 at 11:50 PM
Amazon EC2 launch templates should have IMDSv2 enabled and required.
Profile Applicability: Level 1 Description: Amazon EC2 instances use the Instance Metadata Service (IMDS) to provide data about the instance, such as i...
Wed, 2 Apr, 2025 at 12:07 AM