How do you setup and secure the account?
You use infrastructure-as-code and a few free tools. I'll discuss the setup and give code in my next blog post.
In this post I'll show something about two of the tools:
How does AWS's Trusted Advisor (free version) compare to NCC group's ScoutSuite?
Well, on a relatively simple AWS account, Trusted Advisor finds no issues:
But ScoutSuite has findings:
Many of these findings are worth looking into and getting fixed. The rest can be marked as false positives, so they don't show up in future scans.
Please note that getting a paid AWS support plan would enable extra Trusted Advisor features that might produce similar results. But I like to be able to do it for free :D.
No comments:
Post a Comment