Blue Hexagon Documentation

All content
Space settings

Results will update as you type.

AWS-EC2-EBS-Backup-Enabled
AWS-EC2-EBS-Encrypted-Snapshots
AWS-EC2-EBS-Encryption-Enabled
AWS-EC2-EBS-Encryption-Enabled-By-Default
AWS-EC2-EBS-Volume-Snapshot-Public
AWS-EC2-EBS-Volumes-Too-Old-Snapshots
AWS-EC2-EC2-Instance-Key-Based-Login
AWS-EC2-EC2-LaunchWizard-Security-Groups
AWS-EC2-EC2-Max-Instances
AWS-EC2-Elastic-IP-Limit
AWS-EC2-Encrypted-AMI
AWS-EC2-Excessive-Security-Groups
AWS-EC2-Insecure-EC2-Metadata-Options
AWS-EC2-Instance-IAM-Role
AWS-EC2-Instance-Limit
AWS-EC2-Instance-non-compliant
AWS-EC2-Instance-vCPU-On-Demand-Based-Limits
AWS-EC2-Instances-Managed
AWS-EC2-Instances-Older-Than-6MONTHS
AWS-EC2-Instances-Older-Than-12MONTHS
AWS-EC2-Managed-NAT-Gateway-In-Use
AWS-EC2-NAT-Multiple-AZ
AWS-EC2-Open-All-Ports-Protocols
AWS-EC2-Open-CIFS
AWS-EC2-Open-Custom-Ports
AWS-EC2-Open-DNS
AWS-EC2-Open-Docker
AWS-EC2-Open-Elasticsearch
AWS-EC2-Open-FTP
AWS-EC2-Open-Hadoop-HDFS-NameNode-Metadata-Service
AWS-EC2-Open-Hadoop-HDFS-NameNode-WebUI
AWS-EC2-Open-Kibana
AWS-EC2-Open-MySQL
AWS-EC2-Open-NetBIOS
AWS-EC2-Open-Oracle
AWS-EC2-Open-Oracle-Auto-Data-Warehouse
AWS-EC2-Open-PostgreSQL
AWS-EC2-Open-RDP
AWS-EC2-Open-RFC-1918
AWS-EC2-Open-RPC
AWS-EC2-Open-Salt
AWS-EC2-Open-SMBoTCP
AWS-EC2-Open-SMTP
AWS-EC2-Open-SQL-Server
AWS-EC2-Open-SSH
AWS-EC2-Open-Telnet
AWS-EC2-Open-VNC-Client
AWS-EC2-Open-VNC-Server
AWS-EC2-Overlapping-Security-Groups
AWS-EC2-Public-AMI
AWS-EC2-Public-Instances
AWS-EC2-Public-Instances-Without-Instance-Profiles
AWS-EC2-Public-IP-Address-EC2-Instances
AWS-EC2-Scaling-Config-Contains-Secrets
AWS-EC2-Secrets-in-User-Data
AWS-EC2-Source-Destination-Check-Off
AWS-EC2-Subnet-IP-Availability
AWS-EC2-Unassociated-Elastic-IP-Addresses
AWS-EC2-Unrestricted-Network-ACL-Outbound-Traffic
AWS-EC2-Unused-Amazon-Machine-Images
AWS-EC2-Unused-EBS-Volumes
AWS-EC2-Unused-Elastic-Network-Interfaces
AWS-EC2-Unused-Virtual-Private-Gateway
AWS-EC2-Unused-VPC-Internet-Gateways
AWS-EC2-VPC-Elastic-IP-Limit
AWS-EC2-VPC-Endpoint-Cross-Account-Access
AWS-EC2-VPC-Flow-Logs-Enabled
AWS-EC2-VPC-Multiple-Subnets
AWS-EC2-VPC-PrivateLink-Endpoint-Acceptance-Required
AWS-EC2-VPC-Subnet-Instances-Present
AWS-EC2-VPN-Tunnel-State
AWS-EC2-Web-Tier-EC2-Instance-IAM-Role
AWS-ECR-ECR-Repository-Policy
AWS-ECR-ECR-Repository-Tag-Immutability
AWS-ECR-Image-Vulnerabilities
AWS-ECR-Scan-on-ECR-Image-Push-Disabled
AWS-ECS-Task-Defintion-Contain-Secrets
AWS-EFS-EFS-CMK-Encrypted
AWS-EFS-EFS-Encryption-Enabled
AWS-EFS-encryption-disable-for-data-in-transmit-between-client-and-EFS
AWS-EKS-Cluster-Public
AWS-EKS-Control-Plane-Accessible
AWS-EKS-Control-Plane-Audit
AWS-EKS-EKS-Kubernetes-Version
AWS-EKS-EKS-Logging-Enabled
AWS-EKS-EKS-Private-Endpoint
AWS-EKS-EKS-Secrets-Encrypted
AWS-EKS-EKS-Security-Groups
AWS-EKS-Kubernetes-Secrets-Not-Encrypted-With-CMK
AWS-ElastiCache-memcache-associated-with-deafault-VPC
AWS-ElastiCache-memcached-clusters-using-deafault-endpoint-port
AWS-ElastiCache-redis-clusters-associated-with-deafault-VPC
AWS-ElastiCache-redis-clusters-data-at-rest-encryption-enable
AWS-ElastiCache-redis-clusters-data-at-rest-encryption-uses-CMK
AWS-ElastiCache-redis-clusters-in-transit-encryption-enable
AWS-ElastiCache-redis-clusters-multi-AZ-failover-enable
AWS-ElastiCache-redis-clusters-Redis-AUTH-enable
AWS-ElastiCache-redis-clusters-using-deafault-endpoint-port
AWS-ElasticBeanstalk-ElasticBeanstalk-Managed-Platform-Updates
AWS-ELB-App-Tier-ELB-Security-Policy
AWS-ELB-Classic-Load-Balancers-In-Use
AWS-ELB-ELB-Connection-Draining-Enabled
AWS-ELB-ELB-Cross-Zone-Load-Balancing
AWS-ELB-ELB-Logging-Enabled
AWS-ELB-ELB-No-Instances
AWS-ELB-ELB-HTTPS-Only
AWS-ELB-Public
AWS-ELB-Request-Smuggling
AWS-ELBv2-ELB-SSL-Termination
AWS-ELBv2-ELBv2-Deletion-Protection
AWS-ELBv2-ELBv2-Deregistration-Delay
AWS-ELBv2-ELBv2-HTTPS-Only
AWS-ELBv2-ELBv2-Logging-Enabled
AWS-ELBv2-ELBv2-Minimum-Number-of-EC2-Target-Instances
AWS-ELBv2-ELBv2-NLB-Listener-Security
AWS-ELBv2-ELBv2-WAF-Enabled
AWS-ELBv2-Public
AWS-EMR-cluster-termination-protection-disable
AWS-EMR-EMR-Cluster-Logging
AWS-EMR-EMR-Encryption-At-Rest
AWS-EMR-EMR-Encryption-In-Transit
AWS-EMR-Security-configuration-data-encrytion-certificate-type-PEM
AWS-EMR-security-configuration-unset-or-data-encryption-unset
AWS-ES-Audit-Logging
AWS-ES-ElasticSearch-Access-From-IP-Addresses
AWS-ES-ElasticSearch-Encrypted-Domain
AWS-ES-ElasticSearch-Exposed-Domain
AWS-ES-ElasticSearch-HTTPS-Only
AWS-ES-ElasticSearch-IAM-Authentication
AWS-ES-ElasticSearch-Logging-Enabled
AWS-ES-ElasticSearch-Node-To-Node-Encryption
AWS-ES-ElasticSearch-Public-Service-Domain
AWS-ES-ElasticSearch-Upgrade-Available
AWS-ES-Internal-User-Database
AWS-EC2-IPs-Unused
AWS-ES-Kibana-Auth-Without-Amazon-Cognito
AWS-ES-Public-Domains-Without-Auth
AWS-ES-Public-Kibana-Ports-Without-Auth
AWS-ES-Shodan-IP
AWS-Firehose-Firehose-Delivery-Streams-Encrypted
AWS-Glacier-Public
AWS-Glue-AWS-Glue-Data-Catalog-CMK-Encrypted
AWS-Glue-AWS-Glue-Data-Catalog-Encryption-Enabled
AWS-Glue-AWS-Glue-Job-Bookmark-Encryption-Enabled
AWS-Glue-AWS-Glue-S3-Encryption-Enabled
AWS-Glue-Catalog-Connection-Password-Unencrypted
AWS-Glue-Database-Ssl-Connection
AWS-Glue-Endpoints-Cloudwatch-Logs-Unencrypted
AWS-Glue-Endpoints-Job-Bookmarks-Unecrypted
AWS-Glue-Endpoints-S3-Unencrypted
AWS-Glue-ETL-Jobs-S3-Unencrypted
AWS-Glue-ETS-Jobs-Cloudwatch-Logs-Unencrypted
AWS-Glue-User-With-Two-Access-Keys
AWS-GuardDuty-GuardDuty-is-Enabled
AWS-GuardDuty-GuardDuty-Master-Account
AWS-IAM-Access-Analyzer
AWS-IAM-Access-key-enabled-on-root-account
AWS-IAM-Access-Keys-Extra
AWS-IAM-Access-Keys-in-IAM-User-Setup
AWS-IAM-Access-Keys-Last-Used
AWS-IAM-Access-Keys-Rotated

You‘re viewing this with anonymous access, so some content might be blocked.

/

AWS-EKS-Cluster-Public

AWS-EKS-Cluster-Public

Owned by naveen

Dec 06, 2021

Analytics

Loading data...

Severity : High

Description : EKS Cluster endpoint access is public.

, multiple selections available,

Blue Hexagon Proprietary

{"serverDuration": 39, "requestCorrelationId": "2299539dff6c48679f804febd399124e"}