Cloudanix home pagelight logodark logo
  • Community
  • Login
  1. AWS Audit
  2. Security Groups Audit
  • Overview
  • AWS
  • Azure
  • GCP
  • GitHub
  • AWS Introduction
    • Security of your AWS Account
  • AWS Audit
    • Getting Started with AWS Audit
    • Permissions required for Audit recipe
    • Ad-hoc running an Audit
    • API Gateway Audit
    • Cloudformation Audit
    • CloudFront Audit
    • CloudTrail Audit
    • Cloudwatch Audit
    • DynamoDB Audit
    • EC2 Audit
    • Elastic Search Audit
    • ELB Audit
    • IAM Audit
    • KMS Audit
    • Kubernetes Audit
    • Lambda Audit
    • RDS Audit
    • Redshift Audit
    • Route53 Audit
    • S3 Audit
    • Security Groups Audit
    • SES Audit
    • SNS Audit
  • Resources
    • AWS Services which determine your cost

AWS Audit

Edit this page
Raise an issue

Security Groups Audit

​
Checks performed

  • Unused Virtual Private Gateways Should Be Removed
  • Flow Logs on VPC Should Be Enabled
  • Flow Logs Should be Enabled on Subnet
  • Unused Network ACLs Should Be Removed
  • Unused Security Groups Should Be Removed
  • Default Security Groups Should Not Allow Unrestricted Inbound Access
  • Default Security Groups Should Block All Traffic
  • Default Security Group Should Not Be Publicly Accessible
  • Excessive Number of Security Groups Should Not Be Present
  • EC2 instances Should Not Be Publicly Accessible
  • Ports Should Not Be Open for External Traffic
  • Ports Should Not Be Open for Internal Traffic
  • EC2 Instance Should Not Have Open ICMP ports
  • RDS Instances Should Not Be Publicly Accessible
  • Redshift Should Not Be Publicly Accessible
  • MQ Broker Should Not Be Publicly Accessible
S3 AuditSES Audit
Powered by Mintlify
githubtwitter
  • Checks performed