From 5f54377407f05dc2145356c4fc54ca89a5b154f9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Pedro=20Mart=C3=ADn?= Date: Mon, 3 Feb 2025 20:59:08 +0100 Subject: [PATCH] chore(aws_audit_manager_control_tower_guardrails): add checks to reqs (#6699) --- ..._manager_control_tower_guardrails_aws.json | 27 ++++++++++++++----- 1 file changed, 20 insertions(+), 7 deletions(-) diff --git a/prowler/compliance/aws/aws_audit_manager_control_tower_guardrails_aws.json b/prowler/compliance/aws/aws_audit_manager_control_tower_guardrails_aws.json index 34a5856fd7..fa4d71c05b 100644 --- a/prowler/compliance/aws/aws_audit_manager_control_tower_guardrails_aws.json +++ b/prowler/compliance/aws/aws_audit_manager_control_tower_guardrails_aws.json @@ -28,7 +28,9 @@ "Service": "ebs" } ], - "Checks": [] + "Checks": [ + "ec2_ebs_volume_snapshots_exists" + ] }, { "Id": "1.0.3", @@ -42,7 +44,8 @@ } ], "Checks": [ - "ec2_ebs_default_encryption" + "ec2_ebs_default_encryption", + "ec2_ebs_volume_encryption" ] }, { @@ -87,7 +90,9 @@ } ], "Checks": [ - "iam_user_mfa_enabled_console_access" + "iam_user_mfa_enabled_console_access", + "iam_user_hardware_mfa_enabled", + "iam_root_mfa_enabled" ] }, { @@ -102,7 +107,9 @@ } ], "Checks": [ - "iam_user_mfa_enabled_console_access" + "iam_user_mfa_enabled_console_access", + "iam_user_hardware_mfa_enabled", + "iam_root_mfa_enabled" ] }, { @@ -117,7 +124,9 @@ } ], "Checks": [ - "iam_root_mfa_enabled" + "iam_root_mfa_enabled", + "iam_root_hardware_mfa_enabled", + "iam_user_mfa_enabled_console_access" ] }, { @@ -162,7 +171,10 @@ } ], "Checks": [ - "rds_instance_no_public_access" + "rds_instance_no_public_access", + "s3_bucket_public_access", + "s3_bucket_public_list_acl", + "s3_account_level_public_access_blocks" ] }, { @@ -192,7 +204,8 @@ } ], "Checks": [ - "rds_instance_storage_encrypted" + "rds_instance_storage_encrypted", + "rds_instance_transport_encrypted" ] }, {