Questions tagged with AWS Security Hub
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
In a multi-account environment w/ AWS Organizations enabled - what are the best practices for deploying/enabling GD, Macie, Sec Hub?
- how to enable the services (stacksets, pipeline, orgs)
- what...
5
answers
1
votes
1249
views
asked 3 years agolg...
I hope this is not a dumb question and I'm just overlooking something. I'm trying to figure out how to get the Security Score from a set of enabled controls (CIS) via CLI/Boto/Golang, etc. I don't...
3
answers
0
votes
340
views
asked 3 years agolg...
Someone is using my apache webserver installed on EC2 instance (Amazon Linux 2) to DOS attack other sites
I have these logs in **my** apache access_log
servername.com:80 127.0.0.1 - -...
1
answers
0
votes
237
views
asked 4 years agolg...
I have Control Tower (plus the extensions) running in my organization master and am trying to set up a Security Hub master in the audit account. I can send out invites but they are never received in...
5
answers
0
votes
508
views
asked 4 years agolg...
The CIS benchmark is flagging child accounts that are configured to forward logs to a dedicated log account within the same organization as not having logging configured properly. Would the best...
1
answers
0
votes
910
views
asked 4 years agolg...
I don't see this mentioned in the documentation and I do not see any options in the console, so I thought I would double check here to ensure I am not missing anything:
1. Can you create your own...
2
answers
0
votes
434
views
asked 4 years agolg...
I noticed BatchImportFindings returns an error if i try to send more than 100 objects.
I am trying to find a reference to that value in the AWS SDK and can't find any, is it missing?
If not, can...
Accepted AnswerAWS Security Hub
3
answers
0
votes
244
views
asked 5 years agolg...
Hi
Are there any plans to have CloudWatch events trigger automatically?
From what I understand and tested, the only way to trigger an event is to use a custom action and a manual press it. This...
Accepted AnswerAWS Security Hub
7
answers
0
votes
1275
views
asked 5 years agolg...
Hello,
We have been failing CIS "3.3 Ensure a log metric filter and alarm exist for usage of "root" account" compliance check. We have a metric filter in place to detect and alert for this action....
2
answers
0
votes
437
views
asked 5 years agolg...