Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All service groups
AWS
Azure
Google
Kubernetes
All Kubernetes service groups
Container
Deployment
Network Policy
Network
Pod Security Policy
Role
RoleBinding
Service
Report a new vulnerability
RULE
SERVICE GROUP
M
App Gateway does not use a production level SKU
Network
M
App Gateway does not use OWASP 3.x rules
Network
M
ExpressRoute virtual network gateway does not use an availability zone SKU
Network
M
Firewall application rule allows public access
Network
M
Firewall network rule collection allows public access
Network
M
Front Door WAF is disabled
Network
M
GCP App Engine Firewall Rule allows public access
Network
M
GCP Compute Firewall allows public access
Network
M
Migrate from Legacy Express Route Gateway SKUs
Network
M
Network security group allows public access
Network
M
Network security group flow log retention period is below 90 days
Network
M
Network security group permits ingress from '0.0.0.0/0' to port 3389 (RDP)
Network
M
Network security groups should not permit ingress from the internet to UDP ports
Network
M
Network security rule allows open egress
Network
M
Network security rule allows public access
Network
M
Policy allows sharing of host's Network namespace
Network
M
Service account uses user-managed service account keys
Network
M
The default network for a project should be deleted
Network
M
Traffic Manager uses insecure probing protocol
Network
M
Virtual network DDoS protection plan is disabled
Network
M
Virtual network security group permits ingress from '0.0.0.0/0' to port 22 (SSH)
Network
M
VPN gateway is not configured in active-active mode
Network
M
WAF is not enabled on application gateway
Network
M
WAF prevention mode not enabled
Network
