💼 Threat Protection

• ID: /frameworks/cloudaware/resource-security/threat-protection

Description

Policies that identify missing or weak detection and prevention controls such as WAF, scanning, runtime defense, and threat analytics.

Similar

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (31)

Policy	Logic Count	Flags	Compliance
🛡️ AWS API Gateway REST API Stage is not associated with a WAF Web ACL🟢	1	🟢 x6	no data
🛡️ AWS CloudFront Web Distribution is not integrated with AWS WAF🟢	1	🟠 x1, 🟢 x5	no data
🛡️ AWS ECR Repository Manual Scanning is enabled🟢	1	🟢 x6	no data
🛡️ AWS ELB Application Load Balancer is not configured to drop invalid HTTP headers🟢	1	🟢 x6	no data
🛡️ AWS ELB Load Balancer is not configured with defensive or strictest desync mitigation mode🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty Detector Lambda Protection is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty Detector Malware Protection for EC2 is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty Detector RDS Protection is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty Detector Runtime Monitoring is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty Detector S3 Protection is not enabled🟢	1	🟢 x6	no data
🛡️ AWS GuardDuty is not enabled in all regions🟢	1	🟢 x6	no data
🛡️ AWS Inspector EC2 Scanning is not enabled🟢	1	🟢 x6	no data
🛡️ AWS Inspector ECR Scanning is not enabled🟢	1	🟢 x6	no data
🛡️ AWS Inspector Lambda Code Scanning is not enabled🟢	1	🟢 x6	no data
🛡️ AWS Inspector Lambda Standard Scanning is not enabled🟢	1	🟢 x6	no data
🛡️ AWS RDS Instance uses default endpoint port🟢	1	🟢 x6	no data
🛡️ AWS Redshift Cluster Master Username is a default values🟢	1	🟢 x6	no data
🛡️ AWS Security Hub is not enabled🟢	1	🟢 x6	no data
🛡️ AWS WAF Rule Group has no WAF Rules🟢	1	🟠 x1, 🟢 x5	no data
🛡️ AWS WAF Web ACL has no WAF Rules or WAF Rule Groups🟢	1	🟠 x1, 🟢 x5	no data
🛡️ Azure App Service Remote Debugging is not disabled🟢	1	🟢 x6	no data
🛡️ Azure Application Gateway WAF policy bot protection is not enabled🟢	1	🟢 x6	no data
🛡️ Azure Application Gateway WAF policy Request body inspection property is not enabled🟢	1	🟢 x6	no data
🛡️ Azure Application Gateway Web Application Firewall is not enabled🟢	1	🟢 x6	no data
🛡️ Azure Virtual Machine Endpoint Protection is not installed🟢⚪		🟢 x2, ⚪ x1	no data
🛡️ Azure Virtual Machine Trusted Launch is not enabled🟢	1	🟢 x6	no data
🛡️ Azure Virtual Machine Unapproved Extensions are installed🟢⚪		🟢 x2, ⚪ x1	no data
🛡️ Google Cloud PostgreSQL Instance Log_min_duration_statement Database Flag is not set to -1 (Disabled)🟢	1	🟢 x6	no data
🛡️ Google Cloud SQL Server Instance 3625 (trace flag) Database Flag is not set to on🟢	1	🟢 x6	no data
🛡️ Google Cloud SQL Server Instance external scripts enabled Database Flag is not set to off🟢	1	🟢 x6	no data
🛡️ Google GCE Instance is launched without Shielded VM enabled🟢	1	🟢 x6	no data