Rule for data logging trail

nccgroup / Scout2

Security auditing tool for AWS environments

http://nccgroup.github.io/Scout2/

GNU General Public License v2.0

1.73k stars 300 forks source link

Rule for data logging trail #236

Closed brunns closed 6 years ago

brunns commented 6 years ago

I'm trying to write a rule which ensures that there's a CloudTrail logging S3 data access. This PR does seem to work (though I've left the rule disabled). Does it look reasonable to you, @l01cd3v?

l01cd3v commented 6 years ago

Thanks ! I'll give it a try this weekend and will merge then.

l01cd3v commented 6 years ago

Added a check for the potential reference to non-assigned var and merged. Thanks !