IAM Access Analyzer Is Not Enabled
Enable IAM Access analyzer for IAM policies about all resources. IAM Access Analyzer is a technology introduced at AWS reinvent...
Blog
AWS Config is not Enabled in All Regions
AWS Config is a web service that performs configuration management of supported AWS resources within your account and delivers log...
Amazon Storage Gateway is publicly accessible
AWS Storage Gateway is a service that connects an on-premises software appliance with cloud-based storage to provide integration between your...
AWS S3 bucket is not using DNS-compliant bucket name
Ensure that your S3 buckets are using DNS-compliant bucket names in order to adhere to AWS best practices and to...
K8S API server configuration does not use audit-log-path
Auditing the Kubernetes API Server provides a security-relevant chronological set of records documenting the sequence of activities that have affected...
S3 Bucket Should Use Transfer Acceleration
Ensure that your S3 buckets are using Transfer Acceleration feature to increase the speed (up to 500%) of data transfers...
K8S API server configuration with AlwaysAdmit admissions control plugin
It was found that the API server configuration admission control plugins parameter does not include 'AlwaysAdmit'. An admission controller is...
Users with Inline or Directly Attached Policies Found
IAM users are granted access to services, functions, and data through IAM policies. There are three ways to define policies...
Mysql instance with ‘skip_show_database’ flag disabled
'skip_show_database' database flag prevents people from using the SHOW DATABASES statement if they do not have the SHOW DATABASES privilege....