26 days ago
9 New Config Rules, Updated GuardDuty template, GuardDuty SCP Policy and Open Source Tools- Updated GuardDuty Detector Template and GuardDuty Config Pacakge to inlcude option to toggle S3 protection setting
- Updated GuardDuty SCP to inlcude guardduty:UpdateDetector action
- New Config Rules:
- API Gateway SSL Enabled
- API Gateway X-Ray Tracing Enabled
- Elastic Beanstalk Enhanced Health Reporting Enabled
- Elastic Beanstalk Managed Updates Enabled
- CodePipeline Deployment Count Check
- CodePipeline Region Fanout Check
- Secrets Manager Unused Secrets Check
- Secrets Manager Secrets Encrypted with KMS
- Subnet Auto-Assign Public IP Disabled Check
- New Open Source Security Tools:
- leapp: Leapp is a Cross-Platform Cloud access App, and is designed to manage and secure Cloud Access in multi-account environments.
- rpCheckup: An AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources. It makes it easy to reason about resource visibility across all the accounts in your org.