12 Commits

Author	SHA1	Message	Date
Toni de la Fuente	c09385976a	Consolidated titles and outputs including resource ID in ASFF	2021-07-05 20:17:27 +02:00
Geoff	4961498562	Added parameter to report resource name ... Added a third parameter to checks textFail and textPass to identify resource name in finding.	2021-06-16 22:25:44 -05:00
Toni de la Fuente	a9d56be81a	Added risk, remediation, doc link and caf epic to checks 742 to 7133	2021-03-24 15:12:32 +01:00
Toni de la Fuente	f85845c26b	Added service name to all checks	2021-01-22 00:19:45 +01:00
Barrie Bremner	75e5de9c37	Accept current most restrictive TLSv1.2-only ALB security policy as secure ... The `ELBSecurityPolicy-FS-1-2-Res-2020-10` policy is the most restrictive TLS v1.2 only SSL/TLS security policy available, and is a subset of the already accepted `ELBSecurityPolicy-FS-1-2-Res-2019-08` policy - this commit adds `ELBSecurityPolicy-FS-1-2-Res-2020-10` to the list of acceptable "secure" security policies. `ELBSecurityPolicy-FS-1-2-Res-2020-10` has a very limited set of ciphers, is TLS v1.2 only and supports Forward Secrecy. Current SSL Labs tests gives it an "A" rating for another source of confirmation.	2020-12-24 16:52:01 +00:00
Toni de la Fuente	3d62aedf29	New RC6 including ENS as a new compliance type all formats	2020-12-01 10:03:59 +01:00
Joaquin Rinaudo	ecbe997084	severity+security_hub	2020-09-03 08:04:13 +02:00
jonjozwiak	1c970b0387	extra792 skip check if no HTTPS/SSL Listener and add NLB support	2020-07-16 16:08:33 -05:00
Toni de la Fuente	dac24b3aa8	Fix issue #624 ID of check_extra792	2020-06-23 19:34:41 +02:00
jonjozwiak	4db109bb26	Fixing profile and region settings for check_extra792 - ELB SSL ciphers	2020-06-10 15:46:34 -05:00
Jon Jozwiak	06e81a7f33	Update check_extra792 ASFF resource tye	2020-05-26 09:35:48 -05:00
jonjozwiak	df15388577	Adding insecure SSL checks for CloudFront and CLB/ALB ... (cherry picked from commit c9a60c07a2b5497cbed2d70c53821d826171dd68)	2020-05-26 16:33:18 +03:00