Skip to content

v3.1.0
Compare
Choose a tag to compare
@alphadev4 alphadev4 released this 19 Sep 10:59
· 1876 commits to master since this release
v.3.1.0
69ef0d7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

CloudSploit version 3.1.0 introduces the most latest version on 2023-09-06. The update brings new plugins for Azure, AWS, and GCP along with the hotfixes and enhancements in the existing plugins. The details are as follows.

New Plugins

AWS

  • App Mesh VG Health Check Policies
  • MQ Latest Engine Version
  • RDS Idle Instance Status
  • RDS CPU Alarm Threshold Exceeded
  • RDS Default Port
  • RDS Public Subnet
  • MQ Broker Public Accessibility
  • Password Policy Exists

Azure

  • VM Windows AntiMalware Extension
  • Virtual Networks Logging Enabled

Google

  • Open All Ports Egress
  • PostgreSQL Log Planner Stats Disabled
  • PostgreSQL Log Executor Stats Disabled
  • PostgreSQL Log Parser Stats Disabled

Hot fixes and enhancements

Aws

  • Email DKIM Enabled
    Adding pagination for the related AWS API to avoid unknown results.

Azure

  • These plugins were updated to check for default values from the ASC default policy:
  • Application Whitelisting Enabled
  • Monitor Blob Encryption
  • Monitor Disk Encryption
  • Monitor Endpoint Protection
  • Monitor External Accounts with Write Permissions
  • Monitor IP Forwarding
  • Monitor JIT Network Access
  • Monitor Next Generation Firewall
  • Monitor NSG Enabled
  • Monitor SQL Auditing
  • Monitor SQL Encryption
  • Monitor Total Number of Subscription Owners
  • Monitor System Updates
  • Monitor VM Vulnerability
  • Security Configuration Monitoring

Deprecated plugins

Azure
Log Profile Retention Policy

Assets 2
Loading