automated-security-response-on-aws
automated-security-response-on-aws copied to clipboard
aws-solutions
Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a library of automated playbooks. The solution makes it easier f...
[Customizations for Control Tower](https://docs.aws.amazon.com/controltower/latest/userguide/cfct-overview.html) (CfCT) is a controlled means of deploying change (CloudFormation StackSets and SCPs) across a Control Tower landing zone. It supports lifecycle events (e.g new account creation)...
**Is your feature request related to a problem? Please describe.** No - requesting support for new version of CIS AWS Foundations Benchmark v3.0.0 **Describe the feature you'd like** We'd like...
**Describe the bug** The Remediation Notification contains a field `FindingLink`. I would infer by the name of the field that it is supposed to be a link to the finding....
Following on from my comment in https://github.com/aws-solutions/automated-security-response-on-aws/issues/178#issuecomment-2363130018, this enhancement request centres on provisioning a single CMK KMS key per region, shared to an AWS Organization to remediate findings with. For...
**Describe the bug** Log streams written with the help of the _create_log_stream in applogger.py in the orchestrator lambda layer. If the log stream name already exists then the lambda fails....
**Describe the bug** I enabled SNS.1 auto-remediation as a way to try and resolve all the ControlTower SNS topics (`aws-controltower-SecurityNotifications`) that are not currently encrypted at rest, however, when running...
Update of cost breakdown of the solution: Highlight AWS KMS cost The cost of the solution is heavily driven on the KMS Key usage. If solution is deployed cross accounts...
**What were you initially searching for in the docs?** I was performing an upgrade of the solution from 2.1.3 to 2.2.1 in my organization. There were some new parameters introduced...
AWS recommends tagging all infrastructure to allow for identification and grouping of resource costs. The sharr solution does not have any tagging enabled, which leads to Security Hub reporting that...
*Issue #226* *Description of changes:* Change python scripts inside layer module in the Lambda Layer to use `.` instead of `layer.` references on import. By submitting this pull request, I...
Metadata
Owner
Metadata
Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a library of automated playbooks. The solution makes it easier f...