Cloud Security Rules

RULE	SERVICE GROUP
M Activity log profile does not capture all categories	Monitor
M At least one project-level logging sink does not contain an empty filter	Monitor
M Diagnostic setting does not capture AuditEvent category	Monitor
M IAM default audit log config should not exempt any users	Monitor
M Key Vault logging is not enabled	Monitor
M Logging metric filter and alert for audit configuration changes are not configured	Monitor
M Logging metric filter and alert for project ownership assignments/changes should be configured	Monitor
M Monitor activity log alert does not exist for "Create or Update Network Security Group Rule" events	Monitor
M Monitor activity log alert does not exist for "Create or Update Network Security Group" events	Monitor
M Monitor activity log alert does not exist for "Create or Update Security Solution" events	Monitor
M Monitor activity log alert does not exist for "Create Policy Assignment" events	Monitor
M Monitor activity log alert does not exist for "Delete Network Security Group Rule" events	Monitor
M Monitor activity log alert does not exist for "Delete Security Solution" events	Monitor
M Monitor activity log alert does not exist for "Update Security Policy" events	Monitor
M Monitor activity log alert is not configured for "Create or Update or Delete SQL Server Firewall Rule" events	Monitor
M Monitor activity log alert is not configured for "Delete Policy Assignment" events	Monitor
M Monitor Activity Log Alert should exist for Delete Network Security Group	Monitor
M Monitor activity log retention is set to less than 365 days	Monitor
M Monitor log profile does not have activity logs for global services and all regions	Monitor
M Monitor log profile should be created	Monitor
M Virtual Network Network Watcher should be enabled	Monitor

AWS

Azure

Google

Kubernetes