| π AWS DMS Replication Instance is publicly accessible π’ | 1 | π’ x6 |
| π AWS EBS Snapshot is publicly accessible π’ | 1 | π’ x6 |
| π AWS EC2 Security Group allows unrestricted CIFS traffic π’ | 1 | π’ x6 |
| π AWS EC2 Security Group allows unrestricted traffic to MongoDB π’ | 1 | π’ x6 |
| π AWS EC2 Security Group allows unrestricted traffic to Oracle DBMS π’ | 1 | π’ x6 |
| π AWS RDS Instance is publicly accessible and in an unrestricted public subnet π’ | 1 | π’ x6 |
| π AWS RDS Snapshot is publicly accessible π’ | 1 | π’ x6 |
| π AWS S3 Bucket is not configured to block public access π’ | 1 | π’ x6 |
| π Azure Cosmos DB Account Virtual Network Filter is not enabled π’ | 1 | π’ x6 |
| π Azure Network Security Group allows public access to HTTP(S) ports π’ | 1 | π’ x6 |
| π Azure Network Security Group allows public access to RDP port π’ | 1 | π’ x6 |
| π Azure Network Security Group allows public access to SSH port π’ | 1 | π’ x6 |
| π Azure SQL Database allows ingress from 0.0.0.0/0 (ANY IP) π’ | 1 | π’ x6 |
| π Azure Storage Account Allow Blob Anonymous Access is enabled π’ | 1 | π’ x6 |
| π Google Cloud DNS Managed Zone DNSSEC is not enabled π’ | 1 | π’ x6 |
| π Google Cloud DNS Managed Zone DNSSEC Key-Signing Algorithm is RSASHA1 π’ | 1 | π’ x6 |
| π Google Cloud DNS Managed Zone DNSSEC Zone-Signing Algorithm is RSASHA1 π’ | 1 | π’ x6 |
| π Google Project has a default network π’ | 1 | π’ x6 |
| π Google Project has a legacy network π’ | 1 | π’ x6 |