Tracking what is using a security group

Question

Hello,
I am still at trying to clean up AWS account, and am needing some advice.

In AWS - EC2 - Security Groups - I have several critical vulnerabilities there, and in lieu of just nixing the issues, as im SURE it will blow something up, how do I find what function(s) are using this security group.  So I can chase it back to its roots, see if they can be safely removed, or changed so the security value that is a vulnerability can be removed.
THANKS

Answer

Check out [this](https://aws.amazon.com/premiumsupport/knowledge-center/ec2-find-security-group-resources/) document. You can do it via the console as shown in the document or via the CLI:

```
aws ec2 describe-network-interfaces --filters Name=group-id,Values= --region  --output json
```
Hope this helps

Tracking what is using a security group

Relevant questions

Querying nested json arrays in Cloudtrail logs to find open security groups - Is there a better way?

Networking and Security Groups issue

inbound rule of security group for EC2 Instance in private subnet

Security group doesn't exist but I know it exists

Better way to view multiple instance within a security group at the same time

HTTPS Security Group not allowing access to EC2 instance when tried using HTTPS URL

IAM role needed to assign a security group to a running EC2 instance

Can't connect to EC2 with chained security groups