Amazon EC2

Overview
Critical
14
High
0
Medium
25
Low
38
Informational
0
Security issues (77)
Severity Non-Compliance Region Resource Issue Remediation Read more Action
Medium us-east-1 i-00dac9a2d32a3cd01 EC2 Instance uses public IP address. If you do not need your EC2 instance to be reachable from the Internet, remove the public IP address from it. More info
Low us-east-1 i-00dac9a2d32a3cd01 No IAM role was found. Attach an IAM role to EC2 instance to allow your applications to securely make API requests without requiring you to manage the security credentials that the applications use. More info
Critical us-east-1 i-00dac9a2d32a3cd01 Insecure Instance Meta Data Service (IMDSv1) was found. IMDSv1 can be exploited by SSRF or XML XXE attacks, as it happened in Capital One data breach, impacting 106M people. Transition to IMDSv2. More info
Medium us-east-1 i-0ece894d6d29136f5 EC2 Instance uses public IP address. If you do not need your EC2 instance to be reachable from the Internet, remove the public IP address from it. More info
Low us-east-1 i-0ece894d6d29136f5 No IAM role was found. Attach an IAM role to EC2 instance to allow your applications to securely make API requests without requiring you to manage the security credentials that the applications use. More info
Critical us-east-1 i-0ece894d6d29136f5 Insecure Instance Meta Data Service (IMDSv1) was found. IMDSv1 can be exploited by SSRF or XML XXE attacks, as it happened in Capital One data breach, impacting 106M people. Transition to IMDSv2. More info
Medium us-east-1 vol-004919a0d32e05d34 No Lifecycle Policy configured. Configure Amazon Data Lifecycle Manager to protect data by enforcing regular backups, to retain them as required by auditors or internal compliance, and to create disaster recovery backup policies. More info
Medium CIS 2.2.1 PCI DSS 3.5 HIPAA (Encryption) us-east-1 vol-004919a0d32e05d34 No EBS encryption found. Enable EBS encryption, either using encryption by default or by enabling encryption when you create a volume that you want to encrypt. More info
Medium us-east-1 vol-074257a397fadc9ec No Lifecycle Policy configured. Configure Amazon Data Lifecycle Manager to protect data by enforcing regular backups, to retain them as required by auditors or internal compliance, and to create disaster recovery backup policies. More info
Medium CIS 2.2.1 PCI DSS 3.5 HIPAA (Encryption) us-east-1 vol-074257a397fadc9ec No EBS encryption found. Enable EBS encryption, either using encryption by default or by enabling encryption when you create a volume that you want to encrypt. More info
Low us-east-1 sg-0398ead5692ea25fb EC2 security group has the name prefixed with "launch-wizard". To enforce using secure and custom security groups, make sure your EC2 instances are not associated with security groups prefixed with "launch-wizard". More info
Low us-east-1 sg-086d6bcb3045b0e06 EC2 security group has the name prefixed with "launch-wizard". To enforce using secure and custom security groups, make sure your EC2 instances are not associated with security groups prefixed with "launch-wizard". More info
Low us-east-1 sg-09e3ee11e2cd42ede EC2 security group has the name prefixed with "launch-wizard". To enforce using secure and custom security groups, make sure your EC2 instances are not associated with security groups prefixed with "launch-wizard". More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-east-1 sg-0be4454dc243daa89 Default security group with 2 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-east-1 sg-0cf4e19eb2fc096da Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-east-1 sg-0f1857e87433d40ce Default security group with 2 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Medium us-east-2 eipalloc-0cc2fb68d9464496b Elastic IP not associated with any resource. Delete the unised IP to avoid an hourly charge for an Elastic IP address not associated with any running instance. More info
Medium us-east-2 eipalloc-0c40ecff557dc093e Elastic IP not associated with any resource. Delete the unised IP to avoid an hourly charge for an Elastic IP address not associated with any running instance. More info
Medium us-east-2 eipalloc-0af2a290d5e8fcc87 Elastic IP not associated with any resource. Delete the unised IP to avoid an hourly charge for an Elastic IP address not associated with any running instance. More info
Medium us-east-2 eipalloc-01ab2c85c31e3bb51 Elastic IP not associated with any resource. Delete the unised IP to avoid an hourly charge for an Elastic IP address not associated with any running instance. More info
Critical us-east-2 EC2 The number of allocated Elastic IP addresses for use with instances in a VPC has reached its limit: 5 out of 5 addresses are in use. If you think your architecture warrants additional VPC Elastic IP addresses, you can request a quota increase directly from the Service Quotas console. More info
Critical us-east-2 sg-005d502860fac8127 The security group allows all IP addresses to access your instance using SSH service over TCP port 22. Authorize only a specific IP address or range of addresses to access your instance. More info
Low us-east-2 sg-00d08eb45cd7010d7 EC2 security group has the name prefixed with "launch-wizard". To enforce using secure and custom security groups, make sure your EC2 instances are not associated with security groups prefixed with "launch-wizard". More info
Critical us-east-2 sg-00d08eb45cd7010d7 The security group allows all IP addresses to access your instance using SSH service over TCP port 22. Authorize only a specific IP address or range of addresses to access your instance. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-east-2 sg-0350acc1c67617b6d Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-east-2 sg-071bb37c316ae7808 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-east-2 sg-0a8cef89f1e98930c Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-east-2 sg-0cbbda7c Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-east-2 sg-0fa59556ef2020a9e Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-west-1 sg-f46b0b82 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Medium us-west-2 EC2ContainerService-Rony-EFC-ECS-Test-EcsInstanceAsg-1BNE3TD6NPE91 Auto Scaling group does not have activity notification configured. Create activity notification for your Auto Scaling group. More info
Low us-west-2 i-0548a56d248a067d8 No IAM role was found. Attach an IAM role to EC2 instance to allow your applications to securely make API requests without requiring you to manage the security credentials that the applications use. More info
Critical us-west-2 i-0548a56d248a067d8 Insecure Instance Meta Data Service (IMDSv1) was found. IMDSv1 can be exploited by SSRF or XML XXE attacks, as it happened in Capital One data breach, impacting 106M people. Transition to IMDSv2. More info
Medium us-west-2 i-0362782bc36ed6a41 EC2 Instance uses public IP address. If you do not need your EC2 instance to be reachable from the Internet, remove the public IP address from it. More info
Low us-west-2 i-0362782bc36ed6a41 No IAM role was found. Attach an IAM role to EC2 instance to allow your applications to securely make API requests without requiring you to manage the security credentials that the applications use. More info
Critical us-west-2 i-0362782bc36ed6a41 Insecure Instance Meta Data Service (IMDSv1) was found. IMDSv1 can be exploited by SSRF or XML XXE attacks, as it happened in Capital One data breach, impacting 106M people. Transition to IMDSv2. More info
Medium us-west-2 i-0f55b11c76adbbe3d EC2 Instance uses public IP address. If you do not need your EC2 instance to be reachable from the Internet, remove the public IP address from it. More info
Low us-west-2 i-0f55b11c76adbbe3d No IAM role was found. Attach an IAM role to EC2 instance to allow your applications to securely make API requests without requiring you to manage the security credentials that the applications use. More info
Critical us-west-2 i-0f55b11c76adbbe3d Insecure Instance Meta Data Service (IMDSv1) was found. IMDSv1 can be exploited by SSRF or XML XXE attacks, as it happened in Capital One data breach, impacting 106M people. Transition to IMDSv2. More info
Low us-west-2 i-087073f185b54ed12 No IAM role was found. Attach an IAM role to EC2 instance to allow your applications to securely make API requests without requiring you to manage the security credentials that the applications use. More info
Critical us-west-2 i-087073f185b54ed12 Insecure Instance Meta Data Service (IMDSv1) was found. IMDSv1 can be exploited by SSRF or XML XXE attacks, as it happened in Capital One data breach, impacting 106M people. Transition to IMDSv2. More info
Medium us-west-2 i-0c1b1df0b7efb0b57 EC2 Instance uses public IP address. If you do not need your EC2 instance to be reachable from the Internet, remove the public IP address from it. More info
Low us-west-2 i-0c1b1df0b7efb0b57 No IAM role was found. Attach an IAM role to EC2 instance to allow your applications to securely make API requests without requiring you to manage the security credentials that the applications use. More info
Critical us-west-2 i-0c1b1df0b7efb0b57 Insecure Instance Meta Data Service (IMDSv1) was found. IMDSv1 can be exploited by SSRF or XML XXE attacks, as it happened in Capital One data breach, impacting 106M people. Transition to IMDSv2. More info
Medium us-west-2 i-0c1b1df0b7efb0b57 Found 1 overlap in the security group rules: "tcp:80 [0.0.0.0/0]" in "eks-cluster-sg-test-fargate-west2-1589044931", "EFS-access-4-Cluster-Rony-EFC-ECS-Test". To reduce the risk of unintended access to the instance, analyse your security groups and remove any overlaps among the rules. More info
Medium us-west-2 vol-05830c14eadc21ea2 No Lifecycle Policy configured. Configure Amazon Data Lifecycle Manager to protect data by enforcing regular backups, to retain them as required by auditors or internal compliance, and to create disaster recovery backup policies. More info
Medium CIS 2.2.1 PCI DSS 3.5 HIPAA (Encryption) us-west-2 vol-05830c14eadc21ea2 No EBS encryption found. Enable EBS encryption, either using encryption by default or by enabling encryption when you create a volume that you want to encrypt. More info
Medium us-west-2 vol-06d98619c32de5968 No Lifecycle Policy configured. Configure Amazon Data Lifecycle Manager to protect data by enforcing regular backups, to retain them as required by auditors or internal compliance, and to create disaster recovery backup policies. More info
Medium CIS 2.2.1 PCI DSS 3.5 HIPAA (Encryption) us-west-2 vol-06d98619c32de5968 No EBS encryption found. Enable EBS encryption, either using encryption by default or by enabling encryption when you create a volume that you want to encrypt. More info
Medium us-west-2 vol-0ee3ff4a2100dc2f3 No Lifecycle Policy configured. Configure Amazon Data Lifecycle Manager to protect data by enforcing regular backups, to retain them as required by auditors or internal compliance, and to create disaster recovery backup policies. More info
Medium CIS 2.2.1 PCI DSS 3.5 HIPAA (Encryption) us-west-2 vol-0ee3ff4a2100dc2f3 No EBS encryption found. Enable EBS encryption, either using encryption by default or by enabling encryption when you create a volume that you want to encrypt. More info
Medium us-west-2 vol-0dbacadab7b315e80 No Lifecycle Policy configured. Configure Amazon Data Lifecycle Manager to protect data by enforcing regular backups, to retain them as required by auditors or internal compliance, and to create disaster recovery backup policies. More info
Medium CIS 2.2.1 PCI DSS 3.5 HIPAA (Encryption) us-west-2 vol-0dbacadab7b315e80 No EBS encryption found. Enable EBS encryption, either using encryption by default or by enabling encryption when you create a volume that you want to encrypt. More info
Medium us-west-2 vol-0987ccd97176d01ee No Lifecycle Policy configured. Configure Amazon Data Lifecycle Manager to protect data by enforcing regular backups, to retain them as required by auditors or internal compliance, and to create disaster recovery backup policies. More info
Medium CIS 2.2.1 PCI DSS 3.5 HIPAA (Encryption) us-west-2 vol-0987ccd97176d01ee No EBS encryption found. Enable EBS encryption, either using encryption by default or by enabling encryption when you create a volume that you want to encrypt. More info
Critical us-west-2 sg-008b20c9103b66b66 The security group allows all IP addresses to access your instance using SSH service over TCP port 22. Authorize only a specific IP address or range of addresses to access your instance. More info
Critical us-west-2 sg-00aefbbc4e8c94127 The security group allows all IP addresses to access your instance using SSH service over TCP port 22. Authorize only a specific IP address or range of addresses to access your instance. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-west-2 sg-08a4e95779202da87 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low us-west-2 sg-0a5c0766337509406 EC2 security group has the name prefixed with "launch-wizard". To enforce using secure and custom security groups, make sure your EC2 instances are not associated with security groups prefixed with "launch-wizard". More info
Critical us-west-2 sg-0a5c0766337509406 The security group allows all IP addresses to access your instance using SSH service over TCP port 22. Authorize only a specific IP address or range of addresses to access your instance. More info
Low us-west-2 sg-0a7a7778280d5d4fd EC2 security group has the name prefixed with "launch-wizard". To enforce using secure and custom security groups, make sure your EC2 instances are not associated with security groups prefixed with "launch-wizard". More info
Critical us-west-2 sg-0a7a7778280d5d4fd The security group allows all IP addresses to access your instance using SSH service over TCP port 22. Authorize only a specific IP address or range of addresses to access your instance. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-west-2 sg-0d2059d6f62212dde Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-west-2 sg-0d21142c1e8c610f7 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) us-west-2 sg-b7f7f595 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) ap-south-1 sg-3d5f1d44 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) ap-northeast-2 sg-34ef8e4c Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) ap-southeast-1 sg-7ffd8e36 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) ap-southeast-2 sg-a4bacfef Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) ap-northeast-1 sg-68a91027 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) ca-central-1 sg-19392c7e Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) eu-central-1 sg-577d7728 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) eu-west-1 sg-d77d858c Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) eu-west-2 sg-dc55b6a4 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) eu-west-3 sg-48a3d32a Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) eu-north-1 sg-3e01de5d Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Low CIS 5.4 PCI DSS (Networking) HIPAA (Networking) sa-east-1 sg-07b33375 Default security group with 1 inbound and 1 outbound rules. Review inbound and outbound rules for any default security group. More info
Instances (7)
Region Instance ID Name Instance state Instance type Security group name Launch time Security issues
us-east-1 i-00dac9a2d32a3cd01Prevasio Demo Runningt2.microlaunch-wizard-1 1 Critical + 2 others (details)
us-east-1 i-0ece894d6d29136f5test Runningt2.microlaunch-wizard-3 1 Critical + 2 others (details)
us-west-2 i-0548a56d248a067d8most-vwapp Stoppedt2.microlaunch-wizard-2 1 Critical + 1 other (details)
us-west-2 i-0362782bc36ed6a41rony-west2test-cluster-ng-8ace50be-Node Runningm5.largeeksctl-rony-west2tes... 1 Critical + 2 others (details)
us-west-2 i-0f55b11c76adbbe3drony-west2test-cluster-ng-8ace50be-Node Runningm5.largeeksctl-rony-west2tes... 1 Critical + 2 others (details)
us-west-2 i-087073f185b54ed12ECS Instance - EC2ContainerService-Rony-EFC-ECS-Test Runningt2.microinstance-sg-1, efs-s... 1 Critical + 1 other (details)
us-west-2 i-0c1b1df0b7efb0b57RonyEC2 instance mounts EFS Runningt2.microEFS-access-4-Cluster... 1 Critical + 3 others (details)
AMIs (0)
Region AMI ID Name AMI name Visibility Status Creation Date Security issues
Volumes (7)
Region Volume ID Name Size Snapshot Created State Security issues
us-east-1 vol-004919a0d32e05d348.00 GiBsnap-0b81f678dae94abd5 In-use 2 Medium (details)
us-east-1 vol-074257a397fadc9ec8.00 GiBsnap-0b81f678dae94abd5 In-use 2 Medium (details)
us-west-2 vol-05830c14eadc21ea280.00 GiBsnap-016ccf766c2e3857a In-use 2 Medium (details)
us-west-2 vol-06d98619c32de596830.00 GiBsnap-03066590ea77d49e9 In-use 2 Medium (details)
us-west-2 vol-0ee3ff4a2100dc2f38.00 GiBsnap-07b93d940ebd434f6 In-use 2 Medium (details)
us-west-2 vol-0dbacadab7b315e808.00 GiBsnap-0476b7e626189955f In-use 2 Medium (details)
us-west-2 vol-0987ccd97176d01ee80.00 GiBsnap-016ccf766c2e3857a In-use 2 Medium (details)
Snapshots (0)
Region Snapshot ID Name Size Description Status Started Security issues
Security groups (60)
Region Security group ID Name Security group name VPC ID Description Security issues
us-east-1 sg-007036e42430c5844eks-cluster-sg-test-cluster-1656125505eks-cluster-sg-test-cluster-1656125505vpc-071a12f8ec7613303EKS created security group applied to ENI that is ...
us-east-1 sg-01372d9cb22e8375ccspm-t-8520vpc-073764f023b9a5efc2021-04-02T12:42:41.975Z
us-east-1 sg-0398ead5692ea25fblaunch-wizard-2vpc-07f3b77c454b3c310launch-wizard-2 created 2021-03-09T20:14:40.833+11... 1 Low (details)
us-east-1 sg-086d6bcb3045b0e06launch-wizard-3vpc-07f3b77c454b3c310launch-wizard-3 created 2021-03-09T21:12:37.867+11... 1 Low (details)
us-east-1 sg-09e3ee11e2cd42edelaunch-wizard-1vpc-07f3b77c454b3c310launch-wizard-1 created 2021-03-08T10:16:31.196+11... 1 Low (details)
us-east-1 sg-0be4454dc243daa89sg-cspmdefaultvpc-071a12f8ec7613303default VPC security group 1 Low (details)
us-east-1 sg-0cf4e19eb2fc096dadefaultvpc-07f3b77c454b3c310default VPC security group 1 Low (details)
us-east-1 sg-0ed9db187cb0afe43eks-cluster-sg-my-k8s-cluster-24361614eks-cluster-sg-my-k8s-cluster-24361614vpc-071a12f8ec7613303EKS created security group applied to ENI that is ...
us-east-1 sg-0f1857e87433d40cedefaultvpc-073764f023b9a5efcdefault VPC security group 1 Low (details)
us-east-2 sg-005d502860fac8127eksctl-beautiful-outfit-1611727262-cluster/ControlPlaneSecurityGroupeksctl-beautiful-outfit-1611727262-clust...vpc-054630c200fd16e19Communication between the control plane and worker... 1 Critical (details)
us-east-2 sg-00d08eb45cd7010d7launch-wizard-1vpc-63a01808launch-wizard-1 created 2021-01-14T15:44:17.529+11... 1 Critical + 1 other (details)
us-east-2 sg-01a49712fcbfd91deeksctl-rony-slim-and-mean-cluster/ClusterSharedNodeSecurityGroupeksctl-rony-slim-and-mean-cluster-Cluste...vpc-02585025ab31219f8Communication between all nodes in the cluster
us-east-2 sg-0226df653a507ef30k8s-elb-a2a6e291e47e6450382b4013dcf475fcvpc-054630c200fd16e19Security group for Kubernetes ELB a2a6e291e47e6450...
us-east-2 sg-0350acc1c67617b6ddefaultvpc-0d6a54312c6027726default VPC security group 1 Low (details)
us-east-2 sg-03c698117e0c09723eksctl-scan-my-fargatecluster-cluster/ControlPlaneSecurityGroupeksctl-scan-my-fargatecluster-cluster-Co...vpc-0d6a54312c6027726Communication between the control plane and worker...
us-east-2 sg-05e228b21ad48a838eksctl-scan-my-fargatecluster-cluster/ClusterSharedNodeSecurityGroupeksctl-scan-my-fargatecluster-cluster-Cl...vpc-0d6a54312c6027726Communication between all nodes in the cluster
us-east-2 sg-06239c66f23b80ec1ECS rony-sample-cluster - ECS SecurityGroupEC2ContainerService-rony-sample-cluster-...vpc-0c15019aee6c8423eECS Allowed Ports
us-east-2 sg-069ad0993024d169eeksctl-beautiful-outfit-1611727262-nodegroup-ng-a96c6ebc/SGeksctl-beautiful-outfit-1611727262-nodeg...vpc-054630c200fd16e19Communication between the control plane and worker...
us-east-2 sg-071bb37c316ae7808defaultvpc-054630c200fd16e19default VPC security group 1 Low (details)
us-east-2 sg-08034d2665d7cc2d9eks-cluster-sg-rony-slim-and-mean-378147770eks-cluster-sg-rony-slim-and-mean-378147...vpc-02585025ab31219f8EKS created security group applied to ENI that is ...
us-east-2 sg-0a8cef89f1e98930cdefaultvpc-02585025ab31219f8default VPC security group 1 Low (details)
us-east-2 sg-0bbbd2bd0b8320255eks-cluster-sg-beautiful-outfit-1611727262-1670021051eks-cluster-sg-beautiful-outfit-16117272...vpc-054630c200fd16e19EKS created security group applied to ENI that is ...
us-east-2 sg-0bc1711901492a040eksctl-beautiful-outfit-1611727262-cluster/ClusterSharedNodeSecurityGroupeksctl-beautiful-outfit-1611727262-clust...vpc-054630c200fd16e19Communication between all nodes in the cluster
us-east-2 sg-0cbbda7cdefaultvpc-63a01808default VPC security group 1 Low (details)
us-east-2 sg-0cd5560890163b028eks-cluster-sg-scan-my-fargatecluster-1644764745eks-cluster-sg-scan-my-fargatecluster-16...vpc-0d6a54312c6027726EKS created security group applied to ENI that is ...
us-east-2 sg-0db5533afb8bcf61eeksctl-rony-slim-and-mean-cluster/ControlPlaneSecurityGroupeksctl-rony-slim-and-mean-cluster-Contro...vpc-02585025ab31219f8Communication between the control plane and worker...
us-east-2 sg-0fa59556ef2020a9edefaultvpc-0c15019aee6c8423edefault VPC security group 1 Low (details)
us-west-1 sg-f46b0b82defaultvpc-72ea2314default VPC security group 1 Low (details)
us-west-2 sg-003db125b8a37588beksctl-rony-fargate-west2-cluster/ControlPlaneSecurityGroupeksctl-rony-fargate-west2-cluster-Contro...vpc-033848556cef01acaCommunication between the control plane and worker...
us-west-2 sg-008b20c9103b66b66EFS-access-4-Cluster-Rony-EFC-ECS-Testvpc-0ed42ee2ea7505377allows inbound access from my container instances 1 Critical (details)
us-west-2 sg-00aefbbc4e8c94127eksctl-rony-west2test-cluster-nodegroup-ng-8ace50be/SSHeksctl-rony-west2test-cluster-nodegroup-...vpc-05461e6842795a02dAllow SSH access 1 Critical (details)
us-west-2 sg-01050854712337797eks-cluster-sg-rony-west2test-cluster-252329437eks-cluster-sg-rony-west2test-cluster-25...vpc-05461e6842795a02dEKS created security group applied to ENI that is ...
us-west-2 sg-02696cbf125e3e44beks-cluster-sg-rony-fargate-west2-1741177101eks-cluster-sg-rony-fargate-west2-174117...vpc-033848556cef01acaEKS created security group applied to ENI that is ...
us-west-2 sg-03cd642ae0285b74feks-cluster-sg-test-fargate-west2-1589044931eks-cluster-sg-test-fargate-west2-158904...vpc-0ed42ee2ea7505377EKS created security group applied to ENI that is ...
us-west-2 sg-04a0037ef1c3a0e23efs-sg-1vpc-0ed42ee2ea7505377Created by the LIW for EFS at 2021-03-24T12:17:12....
us-west-2 sg-063c06af17ee9960einstance-sg-1vpc-0ed42ee2ea7505377Created by the LIW for EFS at 2021-03-24T12:17:12....
us-west-2 sg-07393cefa54a8acb6eksctl-rony-fargate-west2-cluster/ClusterSharedNodeSecurityGroupeksctl-rony-fargate-west2-cluster-Cluste...vpc-033848556cef01acaCommunication between all nodes in the cluster
us-west-2 sg-080d47299e8100c66eksctl-test-fargate-west2-cluster/ClusterSharedNodeSecurityGroupeksctl-test-fargate-west2-cluster-Cluste...vpc-0ed42ee2ea7505377Communication between all nodes in the cluster
us-west-2 sg-088069e8c1e80f040eksctl-rony-west2test-cluster-cluster/ClusterSharedNodeSecurityGroupeksctl-rony-west2test-cluster-cluster-Cl...vpc-05461e6842795a02dCommunication between all nodes in the cluster
us-west-2 sg-08a4e95779202da87defaultvpc-0ed42ee2ea7505377default VPC security group 1 Low (details)
us-west-2 sg-0a5c0766337509406launch-wizard-2vpc-574b182flaunch-wizard-2 created 2021-03-21T14:42:40.855+11... 1 Critical + 1 other (details)
us-west-2 sg-0a7a7778280d5d4fdlaunch-wizard-1vpc-574b182flaunch-wizard-1 created 2021-01-14T15:47:23.670+11... 1 Critical + 1 other (details)
us-west-2 sg-0b287ad4e8e58cf99eksctl-rony-west2test-cluster-cluster/ControlPlaneSecurityGroupeksctl-rony-west2test-cluster-cluster-Co...vpc-05461e6842795a02dCommunication between the control plane and worker...
us-west-2 sg-0d2059d6f62212ddedefaultvpc-033848556cef01acadefault VPC security group 1 Low (details)
us-west-2 sg-0d21142c1e8c610f7defaultvpc-05461e6842795a02ddefault VPC security group 1 Low (details)
us-west-2 sg-0df24b56fe977159eeksctl-test-fargate-west2-cluster/ControlPlaneSecurityGroupeksctl-test-fargate-west2-cluster-Contro...vpc-0ed42ee2ea7505377Communication between the control plane and worker...
us-west-2 sg-b7f7f595defaultvpc-574b182fdefault VPC security group 1 Low (details)
ap-south-1 sg-3d5f1d44defaultvpc-445cab2fdefault VPC security group 1 Low (details)
ap-northeast-2 sg-34ef8e4cdefaultvpc-b0318fdbdefault VPC security group 1 Low (details)
ap-southeast-1 sg-7ffd8e36defaultvpc-581ded3edefault VPC security group 1 Low (details)
ap-southeast-2 sg-069da36b798030c61eks-cluster-sg-my-new-cluster-13304788eks-cluster-sg-my-new-cluster-13304788vpc-907296f6EKS created security group applied to ENI that is ...
ap-southeast-2 sg-a4bacfefdefaultvpc-907296f6default VPC security group 1 Low (details)
ap-northeast-1 sg-68a91027defaultvpc-82b457e4default VPC security group 1 Low (details)
ca-central-1 sg-19392c7edefaultvpc-e245678adefault VPC security group 1 Low (details)
eu-central-1 sg-577d7728defaultvpc-7a4bf010default VPC security group 1 Low (details)
eu-west-1 sg-d77d858cdefaultvpc-01d20278default VPC security group 1 Low (details)
eu-west-2 sg-dc55b6a4defaultvpc-29227c41default VPC security group 1 Low (details)
eu-west-3 sg-48a3d32adefaultvpc-f943b491default VPC security group 1 Low (details)
eu-north-1 sg-3e01de5ddefaultvpc-b93689d0default VPC security group 1 Low (details)
sa-east-1 sg-07b33375defaultvpc-2425cb42default VPC security group 1 Low (details)
Elastic IPs (9)
Region Allocation ID Name Allocated IPv4 address Private IP address Security issues
us-east-1 eipalloc-0626cd84eaddcee3334.237.60.246172.30.2.103
us-east-2 eipalloc-0cc2fb68d9464496beksctl-scan-my-fargatecluster-cluster/NATIP3.139.246.48 1 Medium (details)
us-east-2 eipalloc-0c40ecff557dc093eeksctl-beautiful-outfit-1611727262-cluster/NATIP3.140.121.105 1 Medium (details)
us-east-2 eipalloc-0af2a290d5e8fcc873.142.226.246 1 Medium (details)
us-east-2 eipalloc-01ab2c85c31e3bb51eksctl-ronyfargatefeb3rd531-cluster/NATIP3.15.65.25 1 Medium (details)
us-east-2 eipalloc-0f403f4043c6b7a25eksctl-rony-slim-and-mean-cluster/NATIP52.14.234.31192.168.30.180
us-west-2 eipalloc-0f5c8a05b66036859eksctl-rony-fargate-west2-cluster/NATIP44.238.50.171192.168.31.95
us-west-2 eipalloc-08be28a0961b9169aeksctl-rony-west2test-cluster-cluster/NATIP52.37.178.251192.168.15.96
us-west-2 eipalloc-049f99afa3ab8c11feksctl-test-fargate-west2-cluster/NATIP54.68.231.167192.168.26.108
Network interfaces (43)
Region Network interface ID Name Subnet ID VPC ID Instance ID Status Security issues
us-east-1 eni-0c59996b7995c30b4subnet-0b9f721b37c2fc31bvpc-071a12f8ec7613303 In-use
us-east-1 eni-0790f8f2b4f2b7554subnet-0b9f721b37c2fc31bvpc-071a12f8ec7613303 In-use
us-east-1 eni-0cf8fd0c8471382ffsubnet-0ce432972dc33de23vpc-073764f023b9a5efc In-use
us-east-1 eni-064b6062c5eea0cd2subnet-02d5ca39a816d7221vpc-073764f023b9a5efc In-use
us-east-1 eni-057bfec92d43253f1subnet-02d5ca39a816d7221vpc-073764f023b9a5efc In-use
us-east-1 eni-0afc2eb95a7bd9e67subnet-0657d68bdf372c7ffvpc-071a12f8ec7613303 In-use
us-east-1 eni-0e7b86d77f803a580subnet-0657d68bdf372c7ffvpc-071a12f8ec7613303 In-use
us-east-1 eni-0f97414cf29946e12subnet-0949b11bd2f45ade7vpc-07f3b77c454b3c310i-00dac9a2d32a3cd01 In-use
us-east-1 eni-01b6d8056bef99b09subnet-0949b11bd2f45ade7vpc-07f3b77c454b3c310i-0ece894d6d29136f5 In-use
us-east-2 eni-00671076b6c197e02subnet-09563de3126105f38vpc-0d6a54312c6027726 In-use
us-east-2 eni-0319aa763cfb92a90subnet-01a518f518520a06avpc-02585025ab31219f8 In-use
us-east-2 eni-0c02931e6f2ae7617subnet-01a518f518520a06avpc-02585025ab31219f8 In-use
us-east-2 eni-02b369378e2706b15subnet-041804ba75ebda474vpc-02585025ab31219f8 In-use
us-east-2 eni-0b474d8e553cc45bdsubnet-094081a547cb4432avpc-02585025ab31219f8 In-use
us-east-2 eni-061a4676103be405fsubnet-07cbe9d686f048a4dvpc-0c15019aee6c8423e In-use
us-east-2 eni-093a52e920376fdb1subnet-0a0ccda543faabf9fvpc-0d6a54312c6027726 In-use
us-east-2 eni-0d5d41c3f157c83dfsubnet-01a518f518520a06avpc-02585025ab31219f8 In-use
us-east-2 eni-0f276e8abc789a0c7subnet-029893408eb5198fcvpc-0d6a54312c6027726 In-use
us-west-2 eni-03f990d9c3fa21c77subnet-03242db1553e97306vpc-033848556cef01aca In-use
us-west-2 eni-08dd54f73ea11e045subnet-0c3229f462a72f532vpc-033848556cef01aca In-use
us-west-2 eni-0759de38bc1349bc6subnet-8ed975f6vpc-574b182fi-0548a56d248a067d8 In-use
us-west-2 eni-0c957e23affc52172subnet-0908546c3de113983vpc-05461e6842795a02di-0362782bc36ed6a41 In-use
us-west-2 eni-0701c1f08904975c5subnet-0908546c3de113983vpc-05461e6842795a02d In-use
us-west-2 eni-0301732c1de3ac4acsubnet-0498c02dd04882891vpc-0ed42ee2ea7505377 In-use
us-west-2 eni-0f87c4665ac9f748bsubnet-0498c02dd04882891vpc-0ed42ee2ea7505377 In-use
us-west-2 eni-007432e5672972142subnet-0498c02dd04882891vpc-0ed42ee2ea7505377 In-use
us-west-2 eni-00ceb7f94485b8b59subnet-06c01b45b2fd56016vpc-033848556cef01aca In-use
us-west-2 eni-03f9459df1d0535a8subnet-0b96055b79c80f290vpc-0ed42ee2ea7505377 In-use
us-west-2 eni-033fc58e83f633368subnet-0f944b5baf4f9482fvpc-0ed42ee2ea7505377 In-use
us-west-2 eni-026a14ef6581b7f19subnet-06c01b45b2fd56016vpc-033848556cef01aca In-use
us-west-2 eni-023fbd08ff70a7826subnet-0b96055b79c80f290vpc-0ed42ee2ea7505377 In-use
us-west-2 eni-07494c9e6c7d8268bsubnet-0b96055b79c80f290vpc-0ed42ee2ea7505377 In-use
us-west-2 eni-0bf5f12381135c14asubnet-0ab076f9729449d54vpc-05461e6842795a02d In-use
us-west-2 eni-04032ed611f151ebcsubnet-06c01b45b2fd56016vpc-033848556cef01aca In-use
us-west-2 eni-032f5eced8f123480subnet-0bf8ef6489d1fecb2vpc-0ed42ee2ea7505377 In-use
us-west-2 eni-0797ee41b2f97f4fdsubnet-0483c1e7b9342206evpc-05461e6842795a02di-0f55b11c76adbbe3d In-use
us-west-2 eni-0f13fc606c7d8cc96subnet-0ab7c6499c42ab871vpc-0ed42ee2ea7505377i-0c1b1df0b7efb0b57 In-use
us-west-2 eni-03d49ae258f5cf24csubnet-0bf8ef6489d1fecb2vpc-0ed42ee2ea7505377 In-use
us-west-2 eni-0371293d8fab9289asubnet-025f9c664cdb1ef88vpc-05461e6842795a02d In-use
us-west-2 eni-07634265ce1f05328subnet-0bf8ef6489d1fecb2vpc-0ed42ee2ea7505377i-087073f185b54ed12 In-use
us-west-2 eni-0c4118e05b9958183subnet-0483c1e7b9342206evpc-05461e6842795a02di-0f55b11c76adbbe3d In-use
ap-southeast-2 eni-01f8e6cf8bbd16b03subnet-7c529e1avpc-907296f6 In-use
ap-southeast-2 eni-070a32ce4bddb615csubnet-5c087604vpc-907296f6 In-use
Network ACLs (0)
Region Name Network ACL ID Default VPC ID Security issues
Load balancers (0)
Region Name DNS Name State VPC ID Availability Zones Type Created At Security issues
Launch Configurations (1)
Region Name AMI ID Instance type Creation time Security issues
us-west-2 EC2ContainerService-Rony-EFC-ECS-Test-EcsInstanceLc-77XQFZ7EPDJLami-0b58521c622a24969t2.micro
Auto Scaling Groups (2)
Region Name Launch template/configuration Instances Desired Capacity Min Max Availability Zones Security issues
us-west-2 EC2ContainerService-Rony-EFC-ECS-Test-EcsInstanceAsg-1BNE3TD6NPE91111us-west-2a, us-west-2b... 1 Medium (details)
us-west-2 eks-8ebc1bfe-5e22-d868-266f-67bfdec6df96eks-8ebc1bfe-5e22-d868-266f-67bfdec6df962222us-west-2a, us-west-2b...