| π‘οΈ Account Has No IAM Usersπ΄π | 1 | π΄ x3, π x5 | no data |
| π‘οΈ Account Root User has active access keysπ’ | 1 | π’ x6 | no data |
| π‘οΈ Account Root User Hardware MFA is not enabled.π’βͺ | | π’ x2, βͺ x1 | no data |
| π‘οΈ Account Root User MFA is not enabled.π’ | 1 | π’ x6 | no data |
| π‘οΈ AWS IAM User is not managed centrally in multi-account environmentsπ’βͺ | | π’ x2, βͺ x1 | no data |
| π‘οΈ AWSCloudShellFullAccess Policy is attachedπ’ | 1 | π’ x6 | no data |
| π‘οΈ IAM Role Unusedπ’ | 1 | π’ x6 | no data |
| π‘οΈ Policy (Customer Managed) Contains Potential Credentials Exposureπ΄π | 1 | π΄ x3, π x5 | no data |
| π‘οΈ Policy allows full administrative privilegesπ’ | 1 | π’ x6 | no data |
| π‘οΈ Root User credentials were used is the last 30 daysπ’ | 1 | π’ x6 | no data |
| π‘οΈ Server Certificate is expiredπ’ | 1 | π’ x6 | no data |
| π‘οΈ User Access Keys are not rotated every 90 days or lessπ’ | 1 | π’ x6 | no data |
| π‘οΈ User has inline or directly attached policiesπ’ | 1 | π x1, π’ x5 | no data |
| π‘οΈ User has more than one active access keyπ’ | 1 | π’ x6 | no data |
| π‘οΈ User MFA is not enabled for all users with console passwordπ’ | 1 | π’ x6 | no data |
| π‘οΈ User with console and programmatic access set during the initial creationπ’βͺ | | π’ x2, βͺ x1 | no data |
| π‘οΈ User with credentials unused for 45 days or more is not disabledπ’ | 1 | π’ x6 | no data |