Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All service groups
AWS
All AWS service groups
Account Management
ACM
Amplify
API Gateway (REST APIs)
AppStream
AppSync
Athena
Batch
CloudFront
CloudTrail
CloudWatch
CodeBuild
Cognito
Config
DocumentDB
DynamoDB
EBS
EC2
ECR
ECS
EFS
EKS
ELB
EMR
ElastiCache
ElasticSearch
FSx
Glacier
Global Accelerator
Glue
IAM
Kinesis
KMS
Lambda
MQ
MSK
Neptune
QLDB
RDS
Redshift
S3
Sagemaker
Secrets Manager
SNS
SQS
SSM
Transfer
VPC
WAF
WorkSpaces
Azure
Google
Kubernetes
Report a new vulnerability
RULE
SERVICE GROUP
C
CloudFront distribution does not enforce HTTPS
CloudFront
H
CloudFront distribution origin is not set to S3 or origin protocol policy is not set to https-only
CloudFront
M
Alarm is not set for denied connections in CloudFront logs
CloudFront
M
CloudFront access logging is disabled
CloudFront
M
CloudFront distribution custom origin does not use secure TLS protocol version (1.2 and above)
CloudFront
M
CloudFront distribution does not have geo-restrictions specified
CloudFront
M
CloudFront distribution is not protected by WAF
CloudFront
M
CloudFront distribution viewer certificate does not enforce latest TLS/SSL policy
CloudFront