AWS New Checks

Ensure EC2 Client VPN Endpoints Have Client Connection Logging Enabled
Profile Applicability:  Level 2 Description Client connection logging captures important information about client connections, such as connection attempt...
Wed, 2 Apr, 2025 at 6:16 AM
Ensure Amazon EC2 Paravirtual Virtualization Type Is Not Used
Profile Applicability:  Level 2 Description: The paravirtual (PV) virtualization type is an older virtualization technology that lacks modern performance...
Wed, 2 Apr, 2025 at 6:23 AM
Ensure No EC2 Instances Allow Ingress from the Internet to Elasticsearch and Kibana Ports (TCP 9200, 9300, 5601)
Profile Applicability:  Level 1 Description: Ensure that no EC2 instances are configured to allow ingress traffic from the internet to Elasticsearch an...
Wed, 2 Apr, 2025 at 6:38 AM
Ensure No EC2 Instances Allow Ingress from the Internet to TCP Port 88, 464, 749, or 750 (Kerberos)
Profile Applicability: Level 1 Description: Amazon EC2 (Elastic Compute Cloud) instances provide scalable compute capacity in the cloud. Security gro...
Wed, 2 Apr, 2025 at 6:44 AM
Ensure no EC2 instances allow ingress from the internet to TCP port 1521, 2483 or 2484 (Oracle).
Profile Applicability: Level 1 Description: Oracle database services typically use TCP ports 1521, 2483, and 2484 for communication. These ports are us...
Wed, 2 Apr, 2025 at 6:50 AM
Check if Amazon SageMaker Notebook instances have VPC settings configured
Profile Applicability: Level 1 Description: Amazon SageMaker Notebook instances are fully managed environments for data scientists to develop, train, a...
Wed, 2 Apr, 2025 at 6:55 AM
Check if Amazon SageMaker Models have VPC settings configured
Profile Applicability: Level 2 Description: Amazon SageMaker is a fully managed service for building, training, and deploying machine learning models at...
Wed, 2 Apr, 2025 at 6:58 AM
Ensure Compute Instances Do Not Have Public IP Addresses (Automated)
Profile Applicability: Level 2 Description: Compute instances should not have external (public) IP addresses to reduce exposure to the internet. Instea...
Wed, 2 Apr, 2025 at 6:59 AM
Check if Route53 Records contains dangling IPs.
Profile Applicability: Level 1 Description: Amazon Route 53 is a scalable Domain Name System (DNS) web service that routes end users to infrastructure ru...
Wed, 2 Apr, 2025 at 7:45 AM
Ensure IAM Service Roles Prevent Against a Cross-Service Confused Deputy Attack
Profile Applicability: Level 2 Description: A confused deputy attack occurs when a service with permissions inadvertently performs actions on behalf of...
Wed, 2 Apr, 2025 at 8:41 AM