You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently offered check [ec2_securitygroup_allow_wide_open_public_ipv4] nor other checks specific to the services (MySQL, MSSQL, RDP, SSH, etc.) do not flag security groups with a single public IP or Public subnet in source;
Solution Proposed
Create detection that flags any security groups with public IPs in source of the rules
Describe alternatives you've considered
Developing labda that uses regex to check IP/range of every rule of every security group and output list of security groups of non RFC1918 addresses
Additional context
No response
The text was updated successfully, but these errors were encountered:
New feature motivation
Currently offered check [ec2_securitygroup_allow_wide_open_public_ipv4] nor other checks specific to the services (MySQL, MSSQL, RDP, SSH, etc.) do not flag security groups with a single public IP or Public subnet in source;
Solution Proposed
Create detection that flags any security groups with public IPs in source of the rules
Describe alternatives you've considered
Developing labda that uses regex to check IP/range of every rule of every security group and output list of security groups of non RFC1918 addresses
Additional context
No response
The text was updated successfully, but these errors were encountered: