Search result for 'security-groups'

This task identifies security groups allowing unrestricted TCP traffic to specified ports on IPv4, highlighting potential security risks. It ensures traffic to sensitive ports is limited to authorized sources, bolstering network security. The aim is to prevent unauthorized access and exposure of critical services.

The AWS Restricted Common Ports Audit rule evaluates security groups to ensure they do not allow unrestricted incoming TCP traffic to specific critical ports for IPv4. It aims to prevent unauthorized access by marking configurations as COMPLIANT when traffic to these ports is appropriately restricted, thereby enhancing the security posture of AWS environments.

This runbook scans AWS EC2 Security Groups for an access audit, focusing on two key areas: ports that are open to all (0.0.0.0/0) and access rules that allow ingress from individual IPs, excluding common NAT gateways and VPN IP ranges. It provides a detailed report of the security groups, including associated instances and tags, to ensure comprehensive security analysis and compliance.

This task involves scanning EC2 Security Groups to identify and list rules that grant ingress access from specific IP ranges, excluding standard NAT gateway and VPN IP ranges. This helps in auditing and ensuring that no unauthorized or non-standard IP addresses have access to the instances.

This task involves retrieving and displaying all EC2 Security Groups across specified or all AWS regions, including details such as Group ID, Group Name, Description, VPC ID, associated instances, and tags.

This task involves identifying and listing all EC2 Security Groups that have ports accessible from any IP address (0.0.0.0/0), highlighting potential security risks where services are exposed to the entire internet.