Cloud Security Rules

Find out if you have vulnerabilities that put you at risk

RULE	SERVICE GROUP
M VPC security group rule permits ingress from '0.0.0.0/0' to port 636 (LDAP SSL)	VPC
M VPC security group rule permits ingress from '0.0.0.0/0' to port 7001 (Cassandra)	VPC
M VPC security group rule permits ingress from '0.0.0.0/0' to port 8000 (HTTP Alternate)	VPC
M VPC security group rule permits ingress from '0.0.0.0/0' to port 9200 (Elasticsearch)	VPC
M VPC security group rule permits ingress from '0.0.0.0/0' to port 9300 (Elasticsearch)	VPC
M VPC security group rules permit ingress from '0.0.0.0/0' to port 3389	VPC
M Wildcard action has been specified in policy	Secrets Manager
M Wildcard action has been specified in policy action	ElasticSearch
M Wildcard principal has been specified in access policy	SQS
M Wildcard principal has been specified in access policy	Secrets Manager
M Wildcard principal has been specified in access policy	ElasticSearch
M Wildcard principal specified in REST API access policy	API Gateway (REST APIs)
M Workspaces is assigned public IP	WorkSpaces
M X-ray tracing is disabled for Lambda function	Lambda
L EC2 instance is not associated with IAM role and instance profile	EC2
L ECS container definition mounts volumes with mount propagation set to "shared"	ECS
L ECS task definition does not set CPU limit for containers	ECS
L IAM policies allow broad list actions on S3 buckets	IAM
L IAM role attached to instance profile allows broad list actions on S3 buckets	EC2
L VPC security group rule ingress is not restricted to /32 CIDR block	VPC