| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [EC2.1] Amazon EBS snapshots should not be publicly restorable | | | | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [IAM.1] IAM policies should not allow full "*" administrative privileges | | 1 | 1 | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [IAM.2] IAM users should not have IAM policies attached | | 1 | 1 | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [IAM.4] IAM root user access key should not exist | | 1 | 1 | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [Lambda.1] Lambda function policies should prohibit public access | | | | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [Opensearch.1] OpenSearch domains should have encryption at rest enabled | | | | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [RDS.1] RDS snapshot should be private | | 1 | 1 | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [RDS.2] RDS DB Instances should prohibit public access, as determined by the PubliclyAccessible configuration | | 1 | 1 | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [S3.2] S3 general purpose buckets should block public read access | | | | |
| πΌ AWS Foundational Security Best Practices v1.0.0 β πΌ [S3.3] S3 general purpose buckets should block public write access | | | | |
| πΌ PCI DSS v4.0 β πΌ 7.3.1 An access control system(s) is in place that restricts access based on a user's need to know and covers all system components. | | | 5 | |