Detections
Analytics

CIS Amazon Web Services Foundations L2 1.3.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Amazon Web Services Foundations L2 1.3.0

Updated: 7/12/2021

Authority: CIS

Plugin: amazon_aws

Revision: 1.5

Estimated Item Count: 30

Audit Changelog

 
Revision 1.5

Jul 12, 2021

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.4

Jun 17, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.3

Apr 26, 2021

Functional Update
  • 1.6 Ensure hardware MFA is enabled for the 'root user' account - root user account
  • 4.10 Ensure a log metric filter and alarm exist for security group changes - 'metric filter exists'
  • 4.11 Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL) - 'metric filter exists'
  • 4.6 Ensure a log metric filter and alarm exist for AWS Management Console authentication failures - 'metric filter exists'
  • 4.7 Ensure a log metric filter and alarm exist for disabling or scheduled deletion of customer created CMKs - 'metric filter exists'
  • 4.9 Ensure a log metric filter and alarm exist for AWS Config configuration changes - 'metric filter exists'
Revision 1.2

Mar 10, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.1

Dec 20, 2020

Functional Update
  • 5.3 Ensure the default security group of every VPC restricts all traffic - 'No Inbound Rules exist
  • 5.3 Ensure the default security group of every VPC restricts all traffic - 'No Outbound Rules exist