New ingestion and analysis from AWS:
RDS clusters and instances
Try Find aws_rds_cluster that CONTAINS aws_db_instance return tree
DynamoDB tables
Try Find aws_dynamodb_table that relates to * return tree
S3 bucket public access settings
Try Find aws_s3_bucket with BlockPublicAcls != true
AMI images - note that only custom AMI images are currently ingested,
not public or marketplace AMIs.
Try Find aws_ami that relates to * return tree
SAML Single Sign On (SSO) now generally available to enterprise customers
Endpoint Compliance Agent powered by Stethoscope app released for macOS
devices. Access it from the "Power Ups" menu, and send invite to your users by
email. The agent checks the following endpoint configuration with the default
policy:
- OS version
- Patching/update status
- Host firewall status
- Disk encryption status
- Screensaver / screen lock protection
- Remote login status
Veracode Integration first iteration - supports ingestion of Vulnerability
findings.
Google Integration first iteration - supports ingestion of Users and User
Groups.
Sharing URL is added to query results from Landing Zone.
New packaged questions and queries added: