aws-security-hub-response-and-remediation
aws-security-hub-response-and-remediation copied to clipboard
aws-samples
Pre-configured response & remediation playbooks for AWS Security Hub
Minor fix to update default security Group as per event. *Issue #, if available:* *Description of changes:* By submitting this pull request, I confirm that you can use, modify, copy,...
I'm getting error in the cloudwatch logs when executing the lambda funtion. [ERROR] KeyError: 'Details' Traceback (most recent call last): File "/var/task/index.py", line 6, in lambda_handler noncompliantTrail = str(event['detail']['findings'][0]['Resources'][0]['Details']['Other']['name'])
CIS29RRLambdaRole needs iam:PassRole permissions to be able to enable Flow logs, else error `An error occurred (UnauthorizedOperation) when calling the CreateFlowLogs operation: You are not authorized to perform this operation.`...
Issue: When executing Lambdas for CIS 2.9, CIS 1.3 and CIS 1.4 you get "[ERROR] KeyError: 'Details'" due to params "nonRotatedKeyUser" and "noncompliantVPC" not being formatted in same way as...
Most of the remediations are now out of date with CIS benchmark findings in securityhub. Is this going to be maintained/extended into multi account strategy? Examples: 2-8 noncompliantCMK = str(event['detail']['findings'][0]['Resources'][0]['Id'])...
Metadata
Owner
Metadata
Pre-configured response & remediation playbooks for AWS Security Hub