CloudSploit version 3.1.0 introduces the most latest version on 2023-09-06. The update brings new plugins for Azure, AWS, and GCP along with the hotfixes and enhancements in the existing plugins. The details are as follows.
New Plugins
AWS
- App Mesh VG Health Check Policies
- MQ Latest Engine Version
- RDS Idle Instance Status
- RDS CPU Alarm Threshold Exceeded
- RDS Default Port
- RDS Public Subnet
- MQ Broker Public Accessibility
- Password Policy Exists
Azure
- VM Windows AntiMalware Extension
- Virtual Networks Logging Enabled
- Open All Ports Egress
- PostgreSQL Log Planner Stats Disabled
- PostgreSQL Log Executor Stats Disabled
- PostgreSQL Log Parser Stats Disabled
Hot fixes and enhancements
Aws
- Email DKIM Enabled
Adding pagination for the related AWS API to avoid unknown results.
Azure
- These plugins were updated to check for default values from the ASC default policy:
- Application Whitelisting Enabled
- Monitor Blob Encryption
- Monitor Disk Encryption
- Monitor Endpoint Protection
- Monitor External Accounts with Write Permissions
- Monitor IP Forwarding
- Monitor JIT Network Access
- Monitor Next Generation Firewall
- Monitor NSG Enabled
- Monitor SQL Auditing
- Monitor SQL Encryption
- Monitor Total Number of Subscription Owners
- Monitor System Updates
- Monitor VM Vulnerability
- Security Configuration Monitoring
Deprecated plugins
Azure
Log Profile Retention Policy