Ensure no security groups allow ingress from 0.0.0.0/0 to SSH port (22)
Security groups provide stateful filtering of ingress and egress network traffic to AWS resources. It is recommended that no security...
Blog
Ensure no Network ACLs allow ingress from 0.0.0.0/0 to SSH port (22)
The Network Access Control List (NACL) function provide stateless filtering of ingress and egress network traffic to AWS resources. It...
Lambda function without VPC
The function {AwsLambdaFunction} has no vpc configured. Isolating functions in VPCs restricts unwanted access to private resources.
AWS EC2 instance allows public ingress access on mongod default port 27018
The port 27018 is the default port for mongod when running with--shardsvr command-line option or the shardsvr value for the...
Ec2 instance allows inbound access to TCP port 27017 (MongoDB)
Ec2 instance ""{AwsEc2Instance}"" is associated with security group ""{AwsEc2Instance.SecurityGroups}"" that is configured to allow inbound access to TCP port 27017...
AWS EC2 instance allows public ingress access on LDAP SSL port 636
LDAP (Lightweight Directory Access Protocol) is used to connect to directory services for user authentication and retrieval. Allowing inbound traffic...
Network ACL Allows all Inbound Traffic
Ensure there are no Network ACLs with Inbound rule to allow All Traffic
VPC Peering Connection to Multiple Instances
Ensure that the VPC peering connection configuration is limited to a specific instance
Security group allows inbound access from unauthorized ports
An AWS Security Group acts as a virtual firewall for your instances to control inbound and outbound traffic. It was...