-
We are failing some non-CIS checks when running Prowler against a dev environment where object level logging is not enable in CloudTrail.
***Warning***
There is some complexity, chicken vs egg t…
-
- Look for new KMS keys
- Check KMS key bypass-policy-lockout-safety-check flag
- Attempt to generate and then read a CloudTrail event to validate everything is working.
-
As stated in the title,the processed logs in opensearch are too large. For example,there are many fields in the cloudtrail logs,such as "@message",it is raw log context.And what if i delete the "@mess…
-
AWS CloudTrail is a web service that records AWS API calls made in a given AWS account. CloudTrail uses Amazon S3 for log file storage and delivery, so log files are stored durably. In addition to cap…
-
### Community Note
* Please vote on this issue by adding a 👍 [reaction](https://blog.github.com/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/) to the original issue to help the…
-
Could use an IAM role with zero permissions, so no costs are incurred. Though I think some services might only record _successful_ API calls. We should also compare results to any public docs from AWS
-
**Describe the bug**
Timing issue causing `terraform apply` to fail when creating this module from scratch.
```
Error: Error creating CloudTrail: InsufficientS3BucketPolicyException: Incorrect S3…
-
### Describe the Bug
I have a main module that uses your module as a sub module , which is turn is passed to a template. There has been no alteration to your code.
When , I try to generate the …
-
AWS CloudTrail is a web service that records AWS API calls made in a given AWS account. CloudTrail uses Amazon S3 for log file storage and delivery, so log files are stored durably. In addition to cap…
-
AWS CloudTrail is a web service that records AWS API calls made in a given AWS account. CloudTrail uses Amazon S3 for log file storage and delivery, so log files are stored durably. In addition to cap…