ASSESS VPC PEERING RISK

Project Description

Determine what VPCs are peered, which accounts are associated, and identify accounts that aren’t controlled by the enterprise.

Summary:

VPC peering connects two virtual networks within AWS. These VPCs do not need to be in the same AWS account, and can even span AWS regions. It isn’t uncommon to find VPCs peered that shouldn’t be; often leftover from previous projects. This creates operational sprawl and potential security risks by expanding the potential blast radius. This op assesses peered VPCs and can be used to identify stale connections, connections from other AWS accounts, and new connections that may not have been expected. It can optionally isolate the connected VPC by implementing a network ACL, or even dissolve the connection.

Supported Issue Types:

A peered VPC within the same account was found
A peered VPC from another known/registered account was found
A peered VPC from another account also owned by your organization was identified
A peered VPC from an unknown, external account was found
A peered VPC from the external account with the id was identified

Supported Actions:

Quarantine the peered network with a new ACL
Disconnect the peered VPC

Platform:

AWS Security Management with SecurityHub

By Jody Brazil|June 25th, 2020|Amazon, Cloud Automation, Cloud Management, Press Releases, Product Updates, Security|0 Comments

Easy Does It – Understanding Object Storage Public Data Exposure

By Rich Mogull|May 6th, 2020|Cloud Management, How To's, Security, Tips & Tricks, Top 10 Cloud Attack Killchains|0 Comments

Project Description

Summary:

AWS Security Management with SecurityHub

Easy Does It – Understanding Object Storage Public Data Exposure

Project Details

Categories:

Tags:

ASSESS VPC PEERING RISK

Project Description

Summary:

AWS Security Management with SecurityHub

Easy Does It – Understanding Object Storage Public Data Exposure

Project Details

Categories:

Tags:

Share It With The World: Choose Your Platform!