6:[["$","$Le",null,{}],["$","div",null,{"className":"min-h-screen bg-gray-100 p-6","children":[["$","$Lf",null,{}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"QAPage\",\"mainEntity\":{\"@type\":\"Question\",\"name\":\"Find unencrypted AWS services\",\"text\":\"

The company I work for would like to ensure the AWS services we use are as encrypted as possible.

\\n\\n

That means at-rest S3 encryption, SSL encrypted connections between services, encrypted RDS, etc.

\\n\\n

But those are just the services we know of.

\\n\\n

Is there any way to easily scan our AWS accounts for services and connections between services that can be encrypted, but aren't? Something like a security audit?

\\n\",\"author\":{\"@type\":\"Person\",\"name\":\"Martijn - DMARC Analyzer\"},\"upvoteCount\":0,\"answerCount\":1,\"acceptedAnswer\":null}}"}}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mb-6 relative","children":[["$","div",null,{"className":"absolute top-4 right-4 flex flex-wrap space-x-2","children":[["$","span","amazon-web-services",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/amazon-web-services/1","children":"amazon-web-services"}]}]]}],["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://lh6.googleusercontent.com/-02yjKHYBngg/AAAAAAAAAAI/AAAAAAAAAAc/zg5vJi4f_Cc/photo.jpg?sz=256","alt":"Martijn - DMARC Analyzer","className":"w-16 h-16 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/10358328/martijn-dmarc-analyzer","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"Martijn - DMARC Analyzer"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",1]}]]}]]}],["$","h1",null,{"className":"text-2xl font-bold text-gray-800 mb-4","children":"Find unencrypted AWS services"}],["$","p",null,{"className":"text-gray-700 mt-4","dangerouslySetInnerHTML":{"__html":"

The company I work for would like to ensure the AWS services we use are as encrypted as possible.

\n\n

That means at-rest S3 encryption, SSL encrypted connections between services, encrypted RDS, etc.

\n\n

But those are just the services we know of.

\n\n

Is there any way to easily scan our AWS accounts for services and connections between services that can be encrypted, but aren't? Something like a security audit?

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm mt-4","children":[["$","p",null,{"children":["Upvotes: ",0]}],["$","p",null,{"children":["Views: ",50]}]]}]]}],["$","div",null,{"className":"container mx-auto","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-6","children":["Answers (",1,")"]}],[["$","div","58112220",{"className":"bg-white shadow-md rounded-lg p-6 mb-6","children":[["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/0bb53662f0b9fc2410a2253c065f0be9?s=256&d=identicon&r=PG&f=y&so-version=2","alt":"Blokje5","className":"w-12 h-12 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/9741769/blokje5","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"Blokje5"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",5023]}]]}]]}],["$","p",null,{"className":"text-gray-700 mb-4","dangerouslySetInnerHTML":{"__html":"

Check out AWS Config. It is exactly what it does. It watches your AWS account and allows you to define rules to check for configuration settings in AWS. It comes with a list of predefined rules that simplify getting started.

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm","children":["$","p",null,{"children":["Upvotes: ",1]}]}]]}]]]}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mt-6","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-4","children":"Related Questions"}],["$","ul",null,{"className":"list-disc list-inside","children":[["$","li","63895173",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/63895173","className":"text-blue-600 hover:underline","children":"How to view all the services running on AWS?"}]}],["$","li","69223579",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/69223579","className":"text-blue-600 hover:underline","children":"List of services used in AWS"}]}],["$","li","71164731",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/71164731","className":"text-blue-600 hover:underline","children":"AWS CLI - List Unencrypted Volumes and Filter Results --query"}]}],["$","li","51929522",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/51929522","className":"text-blue-600 hover:underline","children":"get all secrets from AWS secret manager"}]}],["$","li","59630168",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/59630168","className":"text-blue-600 hover:underline","children":"Retrieve the encryption state of AWS SNS with PowerShell"}]}],["$","li","44446744",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/44446744","className":"text-blue-600 hover:underline","children":"How can I view our currently active AWS services that we're actually using?"}]}],["$","li","39080369",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/39080369","className":"text-blue-600 hover:underline","children":"Alternative service discovery without ELB for ECS-service"}]}],["$","li","36711626",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/36711626","className":"text-blue-600 hover:underline","children":"Finding the services running on multiple aws ec2 instances"}]}],["$","li","33343662",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/33343662","className":"text-blue-600 hover:underline","children":"How to get aws sever-side encrypted object"}]}],["$","li","28594489",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/28594489","className":"text-blue-600 hover:underline","children":"List every AWS service I am using"}]}]]}]]}]]}],["$","$L11",null,{}],["$","$L12",null,{}],["$","$L13",null,{}],["$","$L14",null,{}],["$","$L15",null,{}]]

Find unencrypted AWS services

Answers (1)

Related Questions