mirror of
https://github.com/ghndrx/prowler.git
synced 2026-02-11 07:15:15 +00:00
ad66254b45
Create `include/check_creds_last_used` and move all logic for checking last usages of passwords and access keys there Modify check13 and extra774 to call new function, specifying time-range of last 90 days and last 30 days respectively Modify messages in check14 and check121 so that all mentions of 'access key's are consistent Fixes #496
22 lines
793 B
Bash
22 lines
793 B
Bash
#!/usr/bin/env bash
|
|
|
|
# Prowler - the handy cloud security tool (c) by Toni de la Fuente
|
|
#
|
|
# This Prowler check is licensed under a
|
|
# Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
|
|
#
|
|
# You should have received a copy of the license along with this
|
|
# work. If not, see <http://creativecommons.org/licenses/by-nc-sa/4.0/>.
|
|
|
|
CHECK_ID_check13="1.3"
|
|
CHECK_TITLE_check13="[check13] Ensure credentials unused for 90 days or greater are disabled (Scored)"
|
|
CHECK_SCORED_check13="SCORED"
|
|
CHECK_TYPE_check13="LEVEL1"
|
|
CHECK_ASFF_TYPE_check13="Software and Configuration Checks/Industry and Regulatory Standards/CIS AWS Foundations Benchmark"
|
|
CHECK_ASFF_RESOURCE_TYPE_check13="AwsIamUser"
|
|
CHECK_ALTERNATE_check103="check13"
|
|
|
|
check13(){
|
|
check_creds_used_in_last_days 90
|
|
}
|