Dominick Bellizzi
cc5da42797
add lambda:get* to prowler-additions-policy
...
The check: 7.60 [extra760] Find secrets in Lambda functions code (Not Scored) (Not part of CIS benchmark)
errors by default, with the following:
An error occurred (AccessDeniedException) when calling the GetFunction operation: User: user/prowler is not authorized to perform: lambda:GetFunction on resource: arn:aws:lambda:eu-west-2:347708466071:function:ApiSimpleDelayDDMonitor
Adding this policy to be successfully run that check.
2019-12-18 14:53:09 -08:00
Dominick Bellizzi
7cb869ad33
use more generic access-analyzer:List*
2019-12-12 09:36:19 -08:00
Dominick Bellizzi
53f097c2af
Add "access-analyzer:ListTagsForResource" to prowler-additions-policy.json
...
check extra769 (Check if IAM Access Analyzer is enabled and its findings) requires this IAM permission
2019-12-06 14:49:36 -08:00
Toni de la Fuente
3f68accf6f
Added missing file iam/prowler-additions-policy.json
2019-11-26 09:57:29 +01:00
Toni de la Fuente
e18cea213b
consolidated ProwlerReadOnlyPolicy and available json
2019-11-22 12:42:57 +01:00
Toni de la Fuente
a191a4eae6
consolidated ProwlerReadOnlyPolicy and available json
2019-11-22 11:41:13 +01:00
Toni de la Fuente
ce7e07d66d
consolidated ProwlerReadOnlyPolicy and available json
2019-11-22 11:29:16 +01:00
Toni de la Fuente
031b68adde
fixed typo in iam policy
2019-11-20 23:20:17 +01:00
zfLQ2qx2
3a893889b6
Misc prowler fixes
2019-11-13 22:49:32 -05:00
Toni de la Fuente
02d2561d6b
Fix issue #354
2019-08-17 12:57:48 +08:00
yapale
4076ee5679
missing aim roles
...
adding missing IAM roles
"cloudtrail:GetEventSelectors", "apigateway:GET",
2018-05-13 19:27:20 +03:00
Toni de la Fuente
5efd2669fa
new check Trusted Avisor errors/warnings
2018-04-20 12:57:07 -04:00
Toni de la Fuente
01a88e6c89
move prowler-policy to iam folder
2018-03-19 11:23:13 -04:00
