Rules Supporting Playbook Remediation

AWS:

1. IAM Password Policy - Expiration Period of 90 Days or Less Not Configured
2. IAM Password Policy - Prevent Reuse of Last 24 Passwords Not Configured
3. IAM Password Policy - Symbols Required Not Configured
4. IAM Password Policy - Numbers Required Not Configured
5. IAM Password Policy - Uppercase Characters Required Not Configured
6. IAM Password Policy - Lowercase Characters Required Not Configured
7. IAM Password Policy - Minimum Password Length of at Least 14 Characters Not Configured
8. SNS Topic Server-Side Encryption Not Enabled
9. Kinesis Server Side Encryption Not Enabled
10. AWS S3 Bucket with Public Read Permission
11. AWS S3 Bucket with Public Write Permission
12. AWS S3 Bucket with Public Read ACP Permission
13. AWS S3 Bucket with Public Write ACP Permission
14. AWS S3 Bucket with Public Full Control Permission
15. AWS S3 Bucket with Authenticated Full Control Permission
16. AWS S3 Bucket with Authenticated Read Permission
17. AWS S3 Bucket with Authenticated Write Permission
18. AWS S3 Bucket with Authenticated Read ACP Permission
19. AWS S3 Bucket with Authenticated Write ACP Permission
20. AWS RDS Snapshot Not Private
21. SQS Server Side Encryption Not Enabled
22. AWS S3 Server Access Logging Not Enabled
23. AWS EC2 AMI Not Private
24. AWS EBS Volume Snapshot Not Private
25. Access Keys for IAM Users Created During Initial Setup
26. Customer Managed CMKs Automatic Key Rotation Not Enabled
27. IAM Users Unused
28. IAM Users Inactive

GCP:

1. Storage Bucket Uniform Bucket-Level Access Not Enabled
2. Cloud SQL Instance Publicly Accessible
3. Cloud SQL Instance Automated Backup Not Configured
4. Compute Instance Connecting Serial Ports Disabled
5. Compute Instance Configured with External IP
6. Flow Logs Not Enabled for Every Subnet in a VPC Network
7. Cloud SQL Instance with Public IP
8. Service Account with Admin Privileges
9. Cloud KMS Cryptokeys Anonymously or Publicly Accessible