Oslogin feature is disabled
Enabling osLogin ensures that SSH keys used to connect to instances are mapped with IAM users. Revoking access to IAM...
Blog
VM instance with ‘Block Project-wide SSH keys’ disabled
Project-wide SSH keys are stored in Compute/Project-meta-data. Project wide SSH keys can be used to login into all the instances...
Privileged user MFA is disabled
Enable multi-factor authentication for all user credentials who have write access to Azure resources. These include roles like Service Co-Administrators,...
Leaked Os Password
Leaked passwords were found on the operating system's user accounts. Leaked passwords are taken from known major data leaks and...
Redshift using default port
It was found that Redshift uses the default port (5439) for database access. It exposes the database to brute force...
Ensure a Custom Role is Assigned Permissions for Administering Resource Locks
There is no custom role to administer resource locks. Azure resource locks allow you to protect sensitive resources from accidental...
SSH Public Key Rotation (90 Days)
Rotating periodically the SSH keys assigned to your IAM users will significantly reduce the chances that a compromised set of...
AWS Secrets Manager secret with automatic rotation disabled
AWS Secrets Manager helps you to store and protect secrets needed to access your applications, services, and IT resources. Rotating...
AWS Secrets Manager secret was not used in the last 90 days
AWS Secrets Manager helps you to store and protect secrets needed to access your applications, services, and IT resources. We...