EC2 Instance with Administrator Privileges
The AWS EC2 Instance was found to have full administrative privileges to your account. Instance Profiles with full administrative privileges...
Blog
User with Privilege Escalation Permissions without MFA
User has roles which allows Privilege escalation, while the user does not have multi-factor authentication activated. If the user will...
Azure principal with privilege escalation permissions
Principal has a role assignment that allows privilege escalation. If the principal will be compromised, the entire account can be...
Unused role with policy found
AWS IAM roles can grant access to AWS resources or actions. It is recommended that all roles that have been...
Azure Storage Account SMB traffic is not set to 3.1.1 version only and not encrypted
Azure Files exposes settings that let you toggle the SMB protocol to be more compatible or more secure, depending on...
PostgreSQL Database Server ‘Infrastructure double encryption’ configuration is Disabled
If Double Encryption is enabled, another layer of encryption is implemented at the hardware level before the storage or network...
SNS topic does not have an active subscription to Simple Queue Service (SQS)
Simple Notification Service (SNS) is a managed service that provides message delivery from publishers to subscribers (also known as producers...
MySQL flexible server TLS version is not set to the default – v1.2
the TLS version for {AzureMySqlFlexibleServer} server, is not configured to v1.2. TLS connectivity helps to provide a new layer of...
ElastiCache Redis cluster with encryption for data at rest disabled
ElastiCache makes it easy to set up, manage, and scale distributed in-memory cache environments in the Cloud. It provides a...