Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All service groups
AWS
Azure
Google
All Google service groups
App Engine
Artifact Registry
BigQuery
Cloud DNS
Cloud Functions
Cloud KMS
Cloud Platform
Cloud SQL
Cloud Storage
Compute Engine
Compute
Container
Dataflow
Dataproc
Filestore
IAM
Kubernetes (Container) Engine
Monitor
Network
Redis
Secrets Manager
Storage
Kubernetes
Report a new vulnerability
RULE
SERVICE GROUP
H
TLS is disabled on DocumentDB
DocumentDB
H
Unrestricted RDP access
Compute Engine
H
Virtual machine configuration contains sensitive data
Compute
H
Virtual machine is configured with password authentication for admin
Compute
H
WAFv2 web ACL does not include the 'AWSManagedRulesKnownBadInputsRuleSet' managed rule group
WAF
H
Wildcard action specified in API Gateway access policy
API Gateway (REST APIs)
H
Wildcard principal in Glacier Vault access policy
Glacier
M
A support role has not been created to manage incidents with AWS Support
IAM
M
Account alternate contact is not configured
Account Management
M
Account security alternate contact is not configured
Account Management
M
Activity log profile does not capture all categories
Monitor
M
Address source/destination check is disabled on the instance
EC2
M
Advanced Threat Protection is disabled on SQL server
Security Center
M
AKS cluster does not have platform diagnostic logging enabled
Container
M
AKS Kubernetes Dashboard enabled
Container
M
AKS local accounts are enabled
Container
M
AKS managed Azure Active Directory integration is disabled
Container
M
Alarm is not set for denied connections in CloudFront logs
CloudFront
M
Amazon DocDB logging is not enabled
DocumentDB
M
Amazon FSx for Windows file systems are not encrypted using a customer-managed KMS key
FSx
M
Amazon MQ Broker logging is disabled
MQ
M
Amazon MSK Cluster logs are not enabled
MSK
M
AMI snapshot copy is not encrypted
EC2
M
Amplify app basic authentication is not enabled
Amplify
M
API Gateway access logging is disabled
API Gateway (REST APIs)
M
API Gateway authorizer caching TTL is not configured
API Gateway (REST APIs)
M
API Gateway caching is not enabled for REST APIs
API Gateway (REST APIs)
M
API Gateway classic custom domain does not use secure TLS protocol version (1.2 and above)
API Gateway (REST APIs)
M
API Gateway classic is not using authentication mechanisms
API Gateway (REST APIs)
M
API Gateway methods metrics are not enabled
API Gateway (REST APIs)
Previous
Next