Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All service groups
AWS
All AWS service groups
Account Management
ACM
Amplify
API Gateway (REST APIs)
AppStream
AppSync
Athena
Batch
CloudFront
CloudTrail
CloudWatch
CodeBuild
Cognito
Config
DocumentDB
DynamoDB
EBS
EC2
ECR
ECS
EFS
EKS
ELB
EMR
ElastiCache
ElasticSearch
FSx
Glacier
Global Accelerator
Glue
IAM
Kinesis
KMS
Lambda
MQ
MSK
Neptune
QLDB
RDS
Redshift
S3
Sagemaker
Secrets Manager
SNS
SQS
SSM
Transfer
VPC
WAF
WorkSpaces
Azure
Google
Kubernetes
Report a new vulnerability
RULE
SERVICE GROUP
H
TLS is disabled on DocumentDB
DocumentDB
H
Unrestricted RDP access
Compute Engine
H
Virtual machine configuration contains sensitive data
Compute
H
Virtual machine is configured with password authentication for admin
Compute
H
WAFv2 web ACL does not include the 'AWSManagedRulesKnownBadInputsRuleSet' managed rule group
WAF
H
Wildcard action specified in API Gateway access policy
API Gateway (REST APIs)
H
Wildcard principal in Glacier Vault access policy
Glacier
M
A support role has not been created to manage incidents with AWS Support
IAM
M
Account alternate contact is not configured
Account Management
M
Account security alternate contact is not configured
Account Management
M
Activity log profile does not capture all categories
Monitor
M
Address source/destination check is disabled on the instance
EC2
M
Advanced Threat Protection is disabled on SQL server
Security Center
M
AKS cluster does not have platform diagnostic logging enabled
Container
M
AKS Kubernetes Dashboard enabled
Container
M
AKS local accounts are enabled
Container
M
AKS managed Azure Active Directory integration is disabled
Container
M
Alarm is not set for denied connections in CloudFront logs
CloudFront
M
Amazon DocDB logging is not enabled
DocumentDB
M
Amazon FSx for Windows file systems are not encrypted using a customer-managed KMS key
FSx
M
Amazon MQ Broker logging is disabled
MQ
M
Amazon MSK Cluster logs are not enabled
MSK
M
AMI snapshot copy is not encrypted
EC2
M
Amplify app basic authentication is not enabled
Amplify
M
API Gateway access logging is disabled
API Gateway (REST APIs)
M
API Gateway authorizer caching TTL is not configured
API Gateway (REST APIs)
M
API Gateway caching is not enabled for REST APIs
API Gateway (REST APIs)
M
API Gateway classic custom domain does not use secure TLS protocol version (1.2 and above)
API Gateway (REST APIs)
M
API Gateway classic is not using authentication mechanisms
API Gateway (REST APIs)
M
API Gateway methods metrics are not enabled
API Gateway (REST APIs)
Previous
Next
