AWS New Checks

Ensure IAM Policies That Allow Full "cloudtrail:*" Privileges Are Not Created
Profile Applicability: Level 2 Description: IAM (Identity and Access Management) is a service in AWS that enables you to manage access to AWS resourc...
Wed, 2 Apr, 2025 at 4:06 AM
Ensure No Network ACLs Allow Ingress from 0.0.0.0/0 to Any Port
Profile Applicability:  Level 1 Description: This check ensures that no Network ACLs (NACLs) in your VPC allow inbound traffic from the internet (0.0.0.0...
Wed, 2 Apr, 2025 at 4:14 AM
Ensure No Security Groups Allow Ingress from 0.0.0.0/0 or ::/0 to Windows SQL Server Ports 1433 or 1434
Profile Applicability  Level 1 Description: Ensure that no security groups are configured to allow ingress traffic from the internet (0.0.0.0/0 or ::/0...
Wed, 2 Apr, 2025 at 4:30 AM
Ensure No IAM Inline Policies Allow Actions That May Lead to Privilege Escalation
Profile Applicability: Level 2 Description: IAM (Identity and Access Management) allows the creation of both customer-managed policies and inline pol...
Wed, 2 Apr, 2025 at 4:31 AM
Ensure no EC2 instances allow ingress from the internet to TCP port 6379 (Redis).
Profile Applicability:  Level 1 Description: This check ensures that no EC2 instances have security group rules that allow inbound traffic from the int...
Wed, 2 Apr, 2025 at 4:37 AM
Check if IAM Users Have Two Active Access Keys
Description: IAM (Identity and Access Management) is an AWS service that helps manage access to AWS resources securely. Access keys are credentials used by...
Wed, 2 Apr, 2025 at 4:51 AM
Ensure IAM Customer-Managed Policies That Allow Full ":" Administrative Privileges Are Not Attached
Description: IAM (Identity and Access Management) is a service provided by AWS to manage access to AWS resources securely. Customer-Managed policies are IA...
Wed, 2 Apr, 2025 at 5:04 AM
Ensure IAM Roles Do Not Have AdministratorAccess Policy Attached
Description: IAM (Identity and Access Management) in AWS allows users and roles to be granted permissions to access AWS resources. IAM roles can be assigne...
Wed, 2 Apr, 2025 at 5:24 AM
Ensure Public Access to EBS Snapshots Is Disabled
 Profile Applicability:  Level 2 Description Amazon Elastic Block Store (EBS) snapshots are used to back up EBS volumes, providing a reliable mechanism f...
Wed, 2 Apr, 2025 at 6:06 AM
Ensure No Security Groups Allow Ingress from 0.0.0.0/0 or ::/0 to Telnet Port 23
Profile Applicability:  Level 2 Description Telnet, which uses TCP port 23, is an outdated protocol with known vulnerabilities as it transmits data, incl...
Wed, 2 Apr, 2025 at 6:10 AM