Giters

element7-io / aws-security-standards-iac

The AWS Security Standars as Infrastructure as Code

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

aws-security-standards-iac

This repository bundles all remediation instructions for AWS Security Hub findings as Infrastructure as Code.

Shortcomings of Security Hub

Some findings barely solve the issue. Although it's hard for a tool like Security Hub to tackle or test some issues,a pointer to those could have been easily added to the documentation. "RDS.10: IAM authentication should be configured for RDS instances"

IaC: CloudFormation

Where possible complete CloudFormation templates are provided. For other findings standalone codesnippets are provides as most likely they need to be wired into existing resources.

IaC: Others

Don't hesitate if you want to contribute in Terraform, CDK, Pullumi or any other kind of IaC.

About

The AWS Security Standars as Infrastructure as Code