Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
RULESERVICE GROUP
  • H
TLS is disabled on DocumentDB
DocumentDB
  • H
Unrestricted RDP access
Compute Engine
  • H
Virtual machine configuration contains sensitive data
Compute
  • H
Virtual machine is configured with password authentication for admin
Compute
  • H
WAFv2 web ACL does not include the 'AWSManagedRulesKnownBadInputsRuleSet' managed rule group
WAF
  • H
Wildcard action specified in API Gateway access policy
API Gateway (REST APIs)
  • H
Wildcard principal in Glacier Vault access policy
Glacier
  • M
A support role has not been created to manage incidents with AWS Support
IAM
  • M
Account alternate contact is not configured
Account Management
  • M
Account security alternate contact is not configured
Account Management
  • M
Activity log profile does not capture all categories
Monitor
  • M
Address source/destination check is disabled on the instance
EC2
  • M
Advanced Threat Protection is disabled on SQL server
Security Center
  • M
AKS cluster does not have platform diagnostic logging enabled
Container
  • M
AKS Kubernetes Dashboard enabled
Container
  • M
AKS local accounts are enabled
Container
  • M
AKS managed Azure Active Directory integration is disabled
Container
  • M
Alarm is not set for denied connections in CloudFront logs
CloudFront
  • M
Amazon DocDB logging is not enabled
DocumentDB
  • M
Amazon FSx for Windows file systems are not encrypted using a customer-managed KMS key
FSx
  • M
Amazon MQ Broker logging is disabled
MQ
  • M
Amazon MSK Cluster logs are not enabled
MSK
  • M
AMI snapshot copy is not encrypted
EC2
  • M
Amplify app basic authentication is not enabled
Amplify
  • M
API Gateway access logging is disabled
API Gateway (REST APIs)
  • M
API Gateway authorizer caching TTL is not configured
API Gateway (REST APIs)
  • M
API Gateway caching is not enabled for REST APIs
API Gateway (REST APIs)
  • M
API Gateway classic custom domain does not use secure TLS protocol version (1.2 and above)
API Gateway (REST APIs)
  • M
API Gateway classic is not using authentication mechanisms
API Gateway (REST APIs)
  • M
API Gateway methods metrics are not enabled
API Gateway (REST APIs)