- AWS Audit
- IAM Audit
Checks performed
- Root Account Should Not Have Access Keys
- Root Account Access Keys Should Be Rotated
- Certificates Should Not Be Tied With Root Account
- Root Account Certificates Should Be Rotated
- Root Account Should Have MFA
- Root Account Should Have Password Rotation
- AWS Account Should Have A Minimum Number of Admins
- AWS Account Should Not Have Too Many Admins
- User Account Without Any Usage Should Be Removed
- MFA Should Be Enabled On User Accounts
- User Account Access keys Should Be Rotated
- User Account Certificates Should Be Rotated
- Inactive User Account Access keys Should Be Dropped
- User Console Access Inactive
- User Account Service Inactivity
- Users Should Not Have Inline Policies
- User Account Should Not Have Multiple Access Keys
- Inactive Roles Should Be Removed
- Role Service Inactivity
- Roles Should Not Have Inline Policies
- Groups Without Users Should Be Removed
- ELB Certificates Should Be Rotated
- Complex Password Policy Should Be Present