prowler

mirror of https://github.com/ghndrx/prowler.git synced 2026-02-10 23:05:05 +00:00

Author	SHA1	Message	Date
Toni de la Fuente	c2a2e393cb	Merge branch 'master' into dlpzx-master	2020-11-16 18:31:18 +01:00
Toni de la Fuente	7cd1413c93	Glue grup 2 corrections	2020-11-16 18:29:16 +01:00
Toni de la Fuente	6e604e1834	Some corrections for glue related checks	2020-11-16 17:51:53 +01:00
Toni de la Fuente	b32538b7e5	Glue review 2	2020-11-13 19:05:19 +01:00
Toni de la Fuente	8c9d843813	Glue review 1	2020-11-13 19:02:26 +01:00
Ramon Diez	954848c6e8	Glue checks part 1	2020-11-04 10:44:43 +01:00
gchib	23df3dd8d0	Add extra7113: Check RDS deletion protection	2020-10-08 17:21:26 +05:30
gchib	5994700c09	Add check extra7113	2020-10-08 17:19:58 +05:30
Toni de la Fuente	b512585d80	Added all new Sagemaker checks to extras	2020-10-06 16:43:21 +02:00
Toni de la Fuente	645ea25ddc	New group for Sagemaker with 10 new controls	2020-10-06 16:40:19 +02:00
Toni de la Fuente	2fb9588883	Add extra7102 to groups extras and internetexposed	2020-10-02 19:14:37 +02:00
Toni de la Fuente	62a87d961c	Add SOC2 compliance group @gchib297 Add SOC2 compliance group @gchib297	2020-09-30 22:59:51 +02:00
Toni de la Fuente	6aa8dd643d	Add check extra798 to gdpr and pci groups @gchib297 Add check extra798 to gdpr and pci groups @gchib297	2020-09-30 22:58:28 +02:00
Toni de la Fuente	f674868dd9	Add check extra798 to iso27001 @gchib297 Add check extra798 to iso27001 @gchib297	2020-09-30 22:57:35 +02:00
gchib	a3a71f499c	Add SOC2 compliance group	2020-09-30 17:44:19 +05:30
gchib	cf62f2bb05	Add check extra798 to PCI	2020-09-30 17:36:20 +05:30
gchib	dd05575508	Add check extra798 to GDPR	2020-09-30 17:33:41 +05:30
gchib	ff19182cf1	Add check extra798 to iso27001	2020-09-30 17:19:06 +05:30
gchib	58c4af98d1	Add FFIEC group Add FFIEC Cybersecurity assessment checks	2020-09-30 17:10:56 +05:30
Toni de la Fuente	8e1fac1b7c	Added checks about EKS to groups internet-exposed and forensics	2020-09-28 09:41:40 +02:00
Toni de la Fuente	d620754bae	Added extra796 EKS control plane access to internet-exposed group	2020-09-28 09:36:04 +02:00
Toni de la Fuente	4d9473881f	Fixed title id for eks-cis	2020-09-18 18:47:14 +02:00
Toni de la Fuente	0f84181d89	Added new check [extra7101] Check if Amazon Elasticsearch Service (ES) domains have audit logging enabled	2020-09-18 18:44:01 +02:00
Toni de la Fuente	7bfeebe2a2	Title adjustments for internetexposed iso27001 and eks-cis groups	2020-09-17 16:51:48 +02:00
Toni de la Fuente	0b9d3e39d4	Merge branch 'master' into master	2020-08-27 16:28:35 +02:00
Toni de la Fuente	1d4563f60d	Added extra799 and extra7100 to group extras Added extra799 and extra7100 to group extras	2020-08-27 16:23:08 +02:00
Toni de la Fuente	553faf72ec	Added [extra736] Check exposed KMS keys to group internet-exposed	2020-08-26 16:57:20 +02:00
Toni de la Fuente	33a53663db	Added [extra799] Check if Security Hub is enabled and its standard subscriptions	2020-08-25 19:54:57 +02:00
Toni de la Fuente	ca471700c2	Added [extra798] Check if Lambda functions have resource-based policy set as Public	2020-08-25 19:06:06 +02:00
Nick Malcolm	ba87f437d5	This check will identify IAM Policies which allow an IAM Principal (a Role or User) to escalate their privileges due to insecure STS permissions. It is AWS best practice to only use explicitly defined Resources (Role ARNs) for an `sts:AssumeRole` action. See more: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_permissions-to-switch.html#roles-usingrole-createpolicy	2020-08-20 21:08:00 +12:00
Jon Jozwiak	022df45ae1	Adding EKS checks to eks-cis and extras group	2020-08-03 08:02:21 -05:00
gchib	04fae53da5	Add additional GDPR checks Added checks: check11,check110,check111,check112,check116,check120,check122,check13,check14,check15,check16,check17,check18,check19,check28,check29,check31,check310,check311,check312,check313,check314,check32,check33,check34,check36,check37,check38,check41,check42,extra711,extra72,extra723,extra730,extra739,extra76,extra763,extra778,extra78,extra792	2020-07-24 22:26:09 +05:30
Toni de la Fuente	19c68980fe	fix typo on title group18	2020-07-24 15:18:46 +02:00
Toni de la Fuente	19bd281c78	Added group18 for ISO27001 thanks to @gchib297 issue #637	2020-07-24 15:16:35 +02:00
gchib	a8026ba3c3	Add additional HIPAA checks Added checks: check112,check13,check15,check16,check17,check18,check19,check21,check24,check28,check31,check310,check311,check312,check313,check314,check32,check33,check34,check35,check36,check37,check39,extra792.	2020-07-23 19:10:17 +05:30
jonjozwiak	6ba9be46fb	Adding check for SSL load balancers	2020-07-17 09:59:53 -05:00
Toni de la Fuente	206b675179	Added group for pci-dss as reference	2020-07-13 17:33:07 +02:00
Toni de la Fuente	84060db013	Added group internet-exposed	2020-06-16 18:01:14 +02:00
Toni de la Fuente	69e2e19e7d	Added extra791 and extra792 to group extras	2020-05-27 09:37:10 +02:00
Toni de la Fuente	f065beb93b	Fixed title in group16_trustboundaries	2020-04-14 23:57:55 +02:00
Toni de la Fuente	8f83da985a	PR #511	2020-04-08 18:00:54 +02:00
Toni de la Fuente	effc3eb14d	Added new checks to group extras	2020-04-08 14:06:11 +02:00
Toni de la Fuente	6ea37b05ca	Improvements and new checks for elasticsearch	2020-04-08 14:00:12 +02:00
Toni de la Fuente	bd432fed92	New check for Metadata Service Version 2 #413	2020-04-07 16:46:46 +02:00
Toni de la Fuente	8c18533752	Updated check titles	2020-03-25 17:18:43 +01:00
Toni de la Fuente	b4aaf0b81e	Added initial PCI group without checks yet, issue #296	2020-03-25 10:53:55 +01:00
Toni de la Fuente	f809f2fa1d	Modify group names header to clarify what is CIS only	2020-03-25 10:53:05 +01:00
Toni de la Fuente	568bba4c38	Add Elasticsearch checks issue #521	2020-03-24 23:46:11 +01:00
Toni de la Fuente	db3ac2361c	Merge branch 'master' into checks/find_security_groups_with_wide_open_non_RFC1918_IPv4	2020-03-23 14:48:05 +01:00
Toni de la Fuente	30941c355c	Added extra777 - Security Groups with too many rules @renuez	2020-03-23 14:39:23 +01:00

1 2 3

121 Commits