| 🛡️ AWS Account Multi-Region CloudTrail is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS Account Object-level CloudTrail Logging for Read Events for S3 Buckets is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS Account Object-level CloudTrail Logging for Write Events for S3 Buckets is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS API Gateway API Access Logging in CloudWatch is not enabled🟢 | 1 | 🟠 x1, 🟢 x5 | no data |
| 🛡️ AWS API Gateway API Execution Logging in CloudWatch is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS API Gateway REST API Detailed CloudWatch Metrics are not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS API Gateway REST API Stage X-Ray Tracing is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS Athena Workgroup CloudWatch Metrics are not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS CloudFront Distribution Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS CloudTrail Log File Validation is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS CloudTrail S3 Bucket Access Logging is not enabled.🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS CloudTrail Trail is not integrated with CloudWatch Logs🟢 | 1 | 🟠 x1, 🟢 x5 | no data |
| 🛡️ AWS Connect Instance flow logs are not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS Data Sync Task logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS DMS Migration Task Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS EC2 Instance Detailed Monitoring is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS ECS Task Definition logging is not configured🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS EKS Cluster Logging is not enabled for all control plane logs types🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS Elastic Beanstalk Environment does not have logs enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS ELB Load Balancer Access Logging is disabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS EMR Cluster Logging is disabled🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ AWS GuardDuty Detector EKS Audit Log Monitoring is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS MQ ActiveMQ Broker Audit Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS OpenSearch Domain audit logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS OpenSearch Domain error logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Cluster required log exports to CloudWatch Logs are not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Instance database logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Instance Enhanced Monitoring is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS Redshift Cluster Audit Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS S3 Bucket Server Access Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS VPC Flow Logs are not enabled🟢 | 1 | 🟠 x1, 🟢 x5 | no data |
| 🛡️ Azure Databricks Diagnostic Log Delivery is not configured🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Diagnostic Setting captures Administrative, Alert, Policy, and Security categories🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Diagnostic Setting exists for Subscription Activity Logs🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Diagnostic Setting for Azure AppService HTTP logs is not enabled🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Azure Diagnostic Setting for Azure Key Vault is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Diagnostic Setting is not enabled for all services that support it🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Azure MySQL Flexible Server audit_log_enabled Parameter is not set to ON🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure MySQL Flexible Server audit_log_events Parameter is not set with the CONNECTION event🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Network Security Group Flow Logs retention period is less than 90 days🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure PostgreSQL Flexible Server log_checkpoints Parameter is not set to ON🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure PostgreSQL Flexible Server log_retention_days Parameter is less than 4 days🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure PostgreSQL Single Server log_connections Parameter is not set to ON🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure PostgreSQL Single Server log_disconnections Parameter is not set to ON🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure SQL Server Auditing is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure SQL Server Auditing Retention is less than 90 days🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Storage Blob Logging is not enabled for Read, Write, and Delete requests🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Storage Queue Logging is not enabled for Read, Write, and Delete requests🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Storage Table Logging is not enabled for Read, Write, and Delete requests🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Azure Subscription Application Insights are not configured🟢 | 1 | 🟠 x1, 🟢 x5 | no data |
| 🛡️ Azure Subscription Network Watcher is not enabled in every region in use🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Azure Virtual Network Flow Logs are not captured and sent to Log Analytics Workspace🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Azure Virtual Network Flow Logs retention period is less than 90 days🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud Access Transparency is not enabled🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Google Cloud Audit Logging is not configured properly🟢 | 1 | 🟢 x6 | no data |
🛡️ Google Cloud PostgreSQL Instance Log_error_verbosity Database Flag is not set to DEFAULT or stricter🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud PostgreSQL Instance cloudsql.enable_pgaudit Database Flag is not set to on🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud PostgreSQL Instance log_temp_files Database Flag is not set to 0🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud PostgreSQL Instance Log_checkpoints Database Flag is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud PostgreSQL Instance Log_connections Database Flag is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud PostgreSQL Instance Log_disconnections Database Flag is not set to On🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud PostgreSQL Instance Log_min_error_statement Database Flag is not set to Error or stricter🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud PostgreSQL Instance Log_min_messages Database Flag is not set at minimum to Warning🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Cloud PostgreSQL Instance Log_statement Database Flag is not set appropriately🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google GCE Firewall Rule logging is disabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google GCE Network DNS Policy Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google GCE Subnetwork Flow Logs are not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google GKE Cluster Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google GKE Cluster Monitoring is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google HTTP(S) Load Balancer Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Logging Log Sink exports logs to a Storage Bucket without Bucket Lock🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Logging Log Sink for All Log Entries is not configured🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Storage Bucket logging is not enabled🟢 | 1 | 🟠 x1, 🟢 x5 | no data |
| 🛡️ Google Storage Bucket with Log Sink does not have Versioning🟢 | 1 | 🟢 x6 | no data |
| 🛡️ Google Workspace and Cloud Identity Data Sharing with Google Cloud is not enabled🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Intune logs are not captured and sent to Log Analytics🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Microsoft Entra ID Diagnostic Setting does not capture Microsoft Entra activity logs🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Microsoft Entra ID Diagnostic Setting does not capture Microsoft Graph activity logs🟢⚪ | | 🟢 x2, ⚪ x1 | no data |
| 🛡️ Network Security Group Flow Logs are not captured and sent to Log Analytics Workspace🟢⚪ | | 🟢 x2, ⚪ x1 | no data |