forked from aquasecurity/cloudsploit
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathexports.js
670 lines (592 loc) · 63.2 KB
/
exports.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
// Export all available scans
module.exports = {
aws : {
'acmValidation' : require(__dirname + '/plugins/aws/acm/acmValidation.js'),
'acmCertificateExpiry' : require(__dirname + '/plugins/aws/acm/acmCertificateExpiry.js'),
'apigatewayCertificateRotation' : require(__dirname + '/plugins/aws/apigateway/apigatewayCertificateRotation.js'),
'apigatewayPrivateEndpoints' : require(__dirname + '/plugins/aws/apigateway/apigatewayPrivateEndpoints.js'),
'apigatewayContentEncoding' : require(__dirname + '/plugins/aws/apigateway/apigatewayContentEncoding.js'),
'apigatewayTracingEnabled' : require(__dirname + '/plugins/aws/apigateway/apigatewayTracingEnabled.js'),
'apigatewayWafEnabled' : require(__dirname + '/plugins/aws/apigateway/apigatewayWafEnabled.js'),
'detailedCloudWatchMetrics' : require(__dirname + '/plugins/aws/apigateway/detailedCloudWatchMetrics.js'),
'apigatewayClientCertificate' : require(__dirname + '/plugins/aws/apigateway/apigatewayClientCertificate.js'),
'asgMultiAz' : require(__dirname + '/plugins/aws/autoscaling/asgMultiAz.js'),
'asgActiveNotifications' : require(__dirname + '/plugins/aws/autoscaling/asgActiveNotifications.js'),
'emptyASG' : require(__dirname + '/plugins/aws/autoscaling/emptyASG.js'),
'sameAzElb' : require(__dirname + '/plugins/aws/autoscaling/sameAzElb.js'),
'asgMissingELB' : require(__dirname + '/plugins/aws/autoscaling/asgMissingELB.js'),
'webTierAsgAssociatedElb' : require(__dirname + '/plugins/aws/autoscaling/webTierAsgAssociatedElb.js'),
'elbHealthCheckActive' : require(__dirname + '/plugins/aws/autoscaling/elbHealthCheckActive.js'),
'asgSuspendedProcesses' : require(__dirname + '/plugins/aws/autoscaling/asgSuspendedProcesses.js'),
'appTierAsgApprovedAmi' : require(__dirname + '/plugins/aws/autoscaling/appTierAsgApprovedAmi.js'),
'webTierAsgApprovedAmi' : require(__dirname + '/plugins/aws/autoscaling/webTierAsgApprovedAmi.js'),
'appTierAsgCloudwatchLogs' : require(__dirname + '/plugins/aws/autoscaling/appTierAsgCloudwatchLogs.js'),
'webTierAsgCloudwatchLogs' : require(__dirname + '/plugins/aws/autoscaling/webTierAsgCloudwatchLogs.js'),
'asgMissingSecurityGroups' : require(__dirname + '/plugins/aws/autoscaling/asgMissingSecurityGroups.js'),
'webTierIamRole' : require(__dirname + '/plugins/aws/autoscaling/webTierIamRole.js'),
'appTierIamRole' : require(__dirname + '/plugins/aws/autoscaling/appTierIamRole.js'),
'workgroupEncrypted' : require(__dirname + '/plugins/aws/athena/workgroupEncrypted.js'),
'workgroupEnforceConfiguration' : require(__dirname + '/plugins/aws/athena/workgroupEnforceConfiguration.js'),
'publicS3Origin' : require(__dirname + '/plugins/aws/cloudfront/publicS3Origin.js'),
'secureOrigin' : require(__dirname + '/plugins/aws/cloudfront/secureOrigin.js'),
'insecureProtocols' : require(__dirname + '/plugins/aws/cloudfront/insecureProtocols.js'),
'cloudfrontHttpsOnly' : require(__dirname + '/plugins/aws/cloudfront/cloudfrontHttpsOnly.js'),
'cloudfrontLoggingEnabled' : require(__dirname + '/plugins/aws/cloudfront/cloudfrontLoggingEnabled.js'),
'cloudfrontWafEnabled' : require(__dirname + '/plugins/aws/cloudfront/cloudfrontWafEnabled.js'),
'volumeEncryption' : require(__dirname + '/plugins/aws/comprehend/volumeEncryption.js'),
'outputResultEncryption' : require(__dirname + '/plugins/aws/comprehend/outputResultEncryption.js'),
'plainTextParameters' : require(__dirname + '/plugins/aws/cloudformation/plainTextParameters.js'),
'stackFailedStatus' : require(__dirname + '/plugins/aws/cloudformation/stackFailedStatus.js'),
'driftDetection' : require(__dirname + '/plugins/aws/cloudformation/driftDetection.js'),
'stackTerminationProtection' : require(__dirname + '/plugins/aws/cloudformation/stackTerminationProtection.js'),
'stackNotifications' : require(__dirname + '/plugins/aws/cloudformation/stackNotifications.js'),
'cloudtrailBucketAccessLogging' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailBucketAccessLogging.js'),
'cloudtrailBucketDelete' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailBucketDelete.js'),
'cloudtrailDataEvents' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailDataEvents.js'),
'cloudtrailEnabled' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailEnabled.js'),
'cloudtrailEncryption' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailEncryption.js'),
'cloudtrailFileValidation' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailFileValidation.js'),
'cloudtrailObjectLock' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailObjectLock.js'),
'cloudtrailToCloudwatch' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailToCloudwatch.js'),
'cloudtrailBucketPrivate' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailBucketPrivate.js'),
'cloudtrailDeliveryFailing' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailDeliveryFailing.js'),
'cloudtrailS3Bucket' : require(__dirname + '/plugins/aws/cloudtrail/cloudtrailS3Bucket.js'),
'globalLoggingDuplicated' : require(__dirname + '/plugins/aws/cloudtrail/globalLoggingDuplicated.js'),
'configServiceEnabled' : require(__dirname + '/plugins/aws/configservice/configServiceEnabled.js'),
'dmsEncryptionEnabled' : require(__dirname + '/plugins/aws/dms/dmsEncryptionEnabled.js'),
'dynamoKmsEncryption' : require(__dirname + '/plugins/aws/dynamodb/dynamoKmsEncryption.js'),
'daxClusterEncryption' : require(__dirname + '/plugins/aws/dynamodb/daxClusterEncryption.js'),
'dynamoContinuousBackups' : require(__dirname + '/plugins/aws/dynamodb/dynamoContinuousBackups.js'),
'appTierInstanceIamRole' : require(__dirname + '/plugins/aws/ec2/appTierInstanceIamRole.js'),
'defaultSecurityGroup' : require(__dirname + '/plugins/aws/ec2/defaultSecurityGroup.js'),
'launchWizardSecurityGroups' : require(__dirname + '/plugins/aws/ec2/launchWizardSecurityGroups'),
'securityGroupRfc1918' : require(__dirname + '/plugins/aws/ec2/securityGroupRfc1918.js'),
'elasticIpLimit' : require(__dirname + '/plugins/aws/ec2/elasticIpLimit.js'),
'unassociatedElasticIp' : require(__dirname + '/plugins/aws/ec2/unassociatedElasticIp.js'),
'subnetIpAvailability' : require(__dirname + '/plugins/aws/ec2/subnetIpAvailability.js'),
'excessiveSecurityGroups' : require(__dirname + '/plugins/aws/ec2/excessiveSecurityGroups.js'),
'instanceLimit' : require(__dirname + '/plugins/aws/ec2/instanceLimit.js'),
'instanceVcpusLimit' : require(__dirname + '/plugins/aws/ec2/instanceVcpusLimit.js'),
'instanceMaxCount' : require(__dirname + '/plugins/aws/ec2/instanceMaxCount.js'),
'instanceKeyBasedLogin' : require(__dirname + '/plugins/aws/ec2/instanceKeyBasedLogin.js'),
'openAllPortsProtocols' : require(__dirname + '/plugins/aws/ec2/openAllPortsProtocols.js'),
'openCIFS' : require(__dirname + '/plugins/aws/ec2/openCIFS.js'),
'openCustomPorts' : require(__dirname + '/plugins/aws/ec2/openCustomPorts.js'),
'openDNS' : require(__dirname + '/plugins/aws/ec2/openDNS.js'),
'openDocker' : require(__dirname + '/plugins/aws/ec2/openDocker.js'),
'openFTP' : require(__dirname + '/plugins/aws/ec2/openFTP.js'),
'openHadoopNameNode' : require(__dirname + '/plugins/aws/ec2/openHadoopNameNode.js'),
'openHadoopNameNodeWebUI' : require(__dirname + '/plugins/aws/ec2/openHadoopNameNodeWebUI.js'),
'openOracleAutoDataWarehouse' : require(__dirname + '/plugins/aws/ec2/openOracleAutoDataWarehouse.js'),
'openKibana' : require(__dirname + '/plugins/aws/ec2/openKibana.js'),
'openMySQL' : require(__dirname + '/plugins/aws/ec2/openMySQL.js'),
'openOracle' : require(__dirname + '/plugins/aws/ec2/openOracle.js'),
'openNetBIOS' : require(__dirname + '/plugins/aws/ec2/openNetBIOS.js'),
'openPostgreSQL' : require(__dirname + '/plugins/aws/ec2/openPostgreSQL.js'),
'openRDP' : require(__dirname + '/plugins/aws/ec2/openRDP.js'),
'openRPC' : require(__dirname + '/plugins/aws/ec2/openRPC.js'),
'openSalt' : require(__dirname + '/plugins/aws/ec2/openSalt.js'),
'openSMBoTCP' : require(__dirname + '/plugins/aws/ec2/openSMBoTCP.js'),
'openSMTP' : require(__dirname + '/plugins/aws/ec2/openSMTP.js'),
'openSQLServer' : require(__dirname + '/plugins/aws/ec2/openSQLServer.js'),
'openSSH' : require(__dirname + '/plugins/aws/ec2/openSSH.js'),
'openTelnet' : require(__dirname + '/plugins/aws/ec2/openTelnet.js'),
'openVNCClient' : require(__dirname + '/plugins/aws/ec2/openVNCClient.js'),
'openVNCServer' : require(__dirname + '/plugins/aws/ec2/openVNCServer.js'),
'openElasticsearch' : require(__dirname + '/plugins/aws/ec2/openElasticsearch.js'),
'vpcElasticIpLimit' : require(__dirname + '/plugins/aws/ec2/vpcElasticIpLimit.js'),
'classicInstances' : require(__dirname + '/plugins/aws/ec2/classicInstances.js'),
'flowLogsEnabled' : require(__dirname + '/plugins/aws/ec2/flowLogsEnabled.js'),
'vpcMultipleSubnets' : require(__dirname + '/plugins/aws/ec2/multipleSubnets.js'),
'overlappingSecurityGroups' : require(__dirname + '/plugins/aws/ec2/overlappingSecurityGroups.js'),
'publicAmi' : require(__dirname + '/plugins/aws/ec2/publicAmi.js'),
'encryptedAmi' : require(__dirname + '/plugins/aws/ec2/encryptedAmi.js'),
'instanceIamRole' : require(__dirname + '/plugins/aws/ec2/instanceIamRole.js'),
'ebsEncryptionEnabled' : require(__dirname + '/plugins/aws/ec2/ebsEncryptionEnabled.js'),
'ebsSnapshotLifecycle' : require(__dirname + '/plugins/aws/ec2/ebsSnapshotLifecycle.js'),
'ebsOldSnapshots' : require(__dirname + '/plugins/aws/ec2/ebsOldSnapshots.js'),
'ebsSnapshotPrivate' : require(__dirname + '/plugins/aws/ec2/ebsSnapshotPrivate.js'),
'ebsSnapshotPublic' : require(__dirname + '/plugins/aws/ec2/ebsSnapshotPublic.js'),
'natMultiAz' : require(__dirname + '/plugins/aws/ec2/natMultiAz.js'),
'defaultVpcInUse' : require(__dirname + '/plugins/aws/ec2/defaultVpcInUse.js'),
'defaultVpcExists' : require(__dirname + '/plugins/aws/ec2/defaultVpcExists.js'),
'crossVpcPublicPrivate' : require(__dirname + '/plugins/aws/ec2/crossVpcPublicPrivate.js'),
'vpcEndpointAcceptance' : require(__dirname + '/plugins/aws/ec2/vpcEndpointAcceptance'),
'vpcEndpointExposed' : require(__dirname + '/plugins/aws/ec2/vpcEndpointExposed.js'),
'vpcEndpointCrossAccount' : require(__dirname + '/plugins/aws/ec2/vpcEndpointCrossAccount.js'),
'vpcPeeringConnections' : require(__dirname + '/plugins/aws/ec2/vpcPeeringConnections.js'),
'ebsEncryptedSnapshots' : require(__dirname + '/plugins/aws/ec2/ebsEncryptedSnapshots.js'),
'ebsDefaultEncryptionEnabled' : require(__dirname + '/plugins/aws/ec2/ebsDefaultEncryptionEnabled.js'),
'ec2MetadataOptions' : require(__dirname + '/plugins/aws/ec2/ec2MetadataOptions.js'),
'unusedEni' : require(__dirname + '/plugins/aws/ec2/unusedEni.js'),
'unusedAmi' : require(__dirname + '/plugins/aws/ec2/unusedAmi.js'),
'unusedVpcInternetGateways' : require(__dirname + '/plugins/aws/ec2/unusedVpcInternetGateways.js'),
'managedNatGateway' : require(__dirname + '/plugins/aws/ec2/managedNatGateway.js'),
'allowedCustomPorts' : require(__dirname + '/plugins/aws/ec2/allowedCustomPorts.js'),
'ebsUnusedVolumes' : require(__dirname + '/plugins/aws/ec2/ebsUnusedVolumes.js'),
'publicIpAddress' : require(__dirname + '/plugins/aws/ec2/publicIpAddress.js'),
'unusedVirtualPrivateGateway' : require(__dirname + '/plugins/aws/ec2/unusedVirtualPrivateGateway.js'),
'vpcSubnetInstancesPresent' : require(__dirname + '/plugins/aws/ec2/vpcSubnetInstancesPresent.js'),
'webTierInstanceIamRole' : require(__dirname + '/plugins/aws/ec2/webTierInstanceIamRole.js'),
'vpnTunnelState' : require(__dirname + '/plugins/aws/ec2/vpnTunnelState.js'),
'networkAclOutboundTraffic' : require(__dirname + '/plugins/aws/ec2/networkAclOutboundTraffic.js'),
'efsCmkEncrypted' : require(__dirname + '/plugins/aws/efs/efsCmkEncrypted.js'),
'efsEncryptionEnabled' : require(__dirname + '/plugins/aws/efs/efsEncryptionEnabled.js'),
'ecrRepositoryPolicy' : require(__dirname + '/plugins/aws/ecr/ecrRepositoryPolicy.js'),
'ecrRepositoryTagImmutability' : require(__dirname + '/plugins/aws/ecr/ecrRepositoryTagImmutability.js'),
'managedPlatformUpdates' : require(__dirname + '/plugins/aws/elasticbeanstalk/managedPlatformUpdates.js'),
'eksKubernetesVersion' : require(__dirname + '/plugins/aws/eks/eksKubernetesVersion.js'),
'eksLoggingEnabled' : require(__dirname + '/plugins/aws/eks/eksLoggingEnabled.js'),
'eksPrivateEndpoint' : require(__dirname + '/plugins/aws/eks/eksPrivateEndpoint.js'),
'eksSecretsEncrypted' : require(__dirname + '/plugins/aws/eks/eksSecretsEncrypted.js'),
'eksSecurityGroups' : require(__dirname + '/plugins/aws/eks/eksSecurityGroups.js'),
'insecureCiphers' : require(__dirname + '/plugins/aws/elb/insecureCiphers.js'),
'elbHttpsOnly' : require(__dirname + '/plugins/aws/elb/elbHttpsOnly.js'),
'elbLoggingEnabled' : require(__dirname + '/plugins/aws/elb/elbLoggingEnabled.js'),
'elbNoInstances' : require(__dirname + '/plugins/aws/elb/elbNoInstances.js'),
'appTierElbSecurity' : require(__dirname + '/plugins/aws/elb/appTierElbSecurity.js'),
'elbv2DeletionProtection' : require(__dirname + '/plugins/aws/elbv2/elbv2DeletionProtection.js'),
'elbv2LoggingEnabled' : require(__dirname + '/plugins/aws/elbv2/elbv2LoggingEnabled.js'),
'elbv2HttpsOnly' : require(__dirname + '/plugins/aws/elbv2/elbv2HttpsOnly.js'),
'elbv2NoInstances' : require(__dirname + '/plugins/aws/elbv2/elbv2NoInstances.js'),
'elbv2WafEnabled' : require(__dirname + '/plugins/aws/elbv2/elbv2WafEnabled.js'),
'elbv2MinimumTargetInstances' : require(__dirname + '/plugins/aws/elbv2/elbv2MinimumTargetInstances.js'),
'elbv2NlbListenerSecurity' : require(__dirname + '/plugins/aws/elbv2/elbv2NlbListenerSecurity.js'),
'emrClusterLogging' : require(__dirname + '/plugins/aws/emr/emrClusterLogging.js'),
'emrEncryptionInTransit' : require(__dirname + '/plugins/aws/emr/emrEncryptionInTransit.js'),
'emrEncryptionAtRest' : require(__dirname + '/plugins/aws/emr/emrEncryptionAtRest.js'),
'esAccessFromIps' : require(__dirname + '/plugins/aws/es/esAccessFromIps.js'),
'esPublicEndpoint' : require(__dirname + '/plugins/aws/es/esPublicEndpoint.js'),
'esRequireIAMAuth' : require(__dirname + '/plugins/aws/es/esRequireIAMAuth.js'),
'esEncryptedDomain' : require(__dirname + '/plugins/aws/es/esEncryptedDomain.js'),
'esExposedDomain' : require(__dirname + '/plugins/aws/es/esExposedDomain.js'),
'esNodeToNodeEncryption' : require(__dirname + '/plugins/aws/es/esNodeToNodeEncryption.js'),
'esLoggingEnabled' : require(__dirname + '/plugins/aws/es/esLoggingEnabled.js'),
'esUpgradeAvailable' : require(__dirname + '/plugins/aws/es/esUpgradeAvailable.js'),
'esHttpsOnly' : require(__dirname + '/plugins/aws/es/esHttpsOnly.js'),
'glueS3EncryptionEnabled' : require(__dirname + '/plugins/aws/glue/glueS3EncryptionEnabled.js'),
'dataCatalogCmkEncrypted' : require(__dirname + '/plugins/aws/glue/dataCatalogCmkEncrypted.js'),
'bookmarkEncryptionEnabled' : require(__dirname + '/plugins/aws/glue/bookmarkEncryptionEnabled.js'),
'accessKeysExtra' : require(__dirname + '/plugins/aws/iam/accessKeysExtra.js'),
'accessKeysLastUsed' : require(__dirname + '/plugins/aws/iam/accessKeysLastUsed.js'),
'accessKeysRotated' : require(__dirname + '/plugins/aws/iam/accessKeysRotated.js'),
'certificateExpiry' : require(__dirname + '/plugins/aws/iam/certificateExpiry.js'),
'crossAccountMfaExtIdAccess' : require(__dirname + '/plugins/aws/iam/crossAccountMfaExtIdAccess.js'),
'emptyGroups' : require(__dirname + '/plugins/aws/iam/emptyGroups.js'),
'groupInlinePolicies' : require(__dirname + '/plugins/aws/iam/groupInlinePolicies.js'),
'iamMasterManagerRoles' : require(__dirname + '/plugins/aws/iam/iamMasterManagerRoles.js'),
'iamUserAdmins' : require(__dirname + '/plugins/aws/iam/iamUserAdmins.js'),
'iamUserNameRegex' : require(__dirname + '/plugins/aws/iam/iamUserNameRegex.js'),
'iamUserUnauthorizedToEdit' : require(__dirname + '/plugins/aws/iam/iamUserUnauthorizedToEdit'),
'iamRolePolicies' : require(__dirname + '/plugins/aws/iam/iamRolePolicies.js'),
'iamRoleLastUsed' : require(__dirname + '/plugins/aws/iam/iamRoleLastUsed.js'),
'maxPasswordAge' : require(__dirname + '/plugins/aws/iam/maxPasswordAge.js'),
'minPasswordLength' : require(__dirname + '/plugins/aws/iam/minPasswordLength.js'),
'noUserIamPolicies' : require(__dirname + '/plugins/aws/iam/noUserIamPolicies.js'),
'passwordExpiration' : require(__dirname + '/plugins/aws/iam/passwordExpiration.js'),
'passwordRequiresLowercase' : require(__dirname + '/plugins/aws/iam/passwordRequiresLowercase.js'),
'passwordRequiresNumbers' : require(__dirname + '/plugins/aws/iam/passwordRequiresNumbers.js'),
'passwordRequiresSymbols' : require(__dirname + '/plugins/aws/iam/passwordRequiresSymbols.js'),
'passwordRequiresUppercase' : require(__dirname + '/plugins/aws/iam/passwordRequiresUppercase.js'),
'passwordReusePrevention' : require(__dirname + '/plugins/aws/iam/passwordReusePrevention.js'),
'rootAccessKeys' : require(__dirname + '/plugins/aws/iam/rootAccessKeys.js'),
'rootSigningCertificate' : require(__dirname + '/plugins/aws/iam/rootSigningCertificate.js'),
'rootAccountInUse' : require(__dirname + '/plugins/aws/iam/rootAccountInUse.js'),
'rootHardwareMfa' : require(__dirname + '/plugins/aws/iam/rootHardwareMfa.js'),
'rootMfaEnabled' : require(__dirname + '/plugins/aws/iam/rootMfaEnabled.js'),
'sshKeysRotated' : require(__dirname + '/plugins/aws/iam/sshKeysRotated.js'),
'trustedCrossAccountRoles' : require(__dirname + '/plugins/aws/iam/trustedCrossAccountRoles.js'),
'usersMfaEnabled' : require(__dirname + '/plugins/aws/iam/usersMfaEnabled.js'),
'usersPasswordAndKeys' : require(__dirname + '/plugins/aws/iam/usersPasswordAndKeys.js'),
'usersPasswordLastUsed' : require(__dirname + '/plugins/aws/iam/usersPasswordLastUsed.js'),
'canaryKeysUsed' : require(__dirname + '/plugins/aws/iam/canaryKeysUsed.js'),
'kinesisEncrypted' : require(__dirname + '/plugins/aws/kinesis/kinesisEncrypted.js'),
'firehoseEncrypted' : require(__dirname + '/plugins/aws/firehose/firehoseEncrypted.js'),
'kmsKeyRotation' : require(__dirname + '/plugins/aws/kms/kmsKeyRotation.js'),
'kmsScheduledDeletion' : require(__dirname + '/plugins/aws/kms/kmsScheduledDeletion.js'),
'kmsKeyPolicy' : require(__dirname + '/plugins/aws/kms/kmsKeyPolicy.js'),
'kmsDefaultKeyUsage' : require(__dirname + '/plugins/aws/kms/kmsDefaultKeyUsage.js'),
'kmsAppTierCmk' : require(__dirname + '/plugins/aws/kms/kmsAppTierCmk.js'),
'rdsAutomatedBackups' : require(__dirname + '/plugins/aws/rds/rdsAutomatedBackups.js'),
'rdsEncryptionEnabled' : require(__dirname + '/plugins/aws/rds/rdsEncryptionEnabled.js'),
'rdsCmkEncryptionEnabled' : require(__dirname + '/plugins/aws/rds/rdsCmkEncryptionEnabled.js'),
'rdsLoggingEnabled' : require(__dirname + '/plugins/aws/rds/rdsLoggingEnabled.js'),
'rdsPubliclyAccessible' : require(__dirname + '/plugins/aws/rds/rdsPubliclyAccessible.js'),
'rdsRestorable' : require(__dirname + '/plugins/aws/rds/rdsRestorable.js'),
'rdsMultiAz' : require(__dirname + '/plugins/aws/rds/rdsMultiAz.js'),
'rdsSnapshotEncryption' : require(__dirname + '/plugins/aws/rds/rdsSnapshotEncryption.js'),
'rdsMinorVersionUpgrade' : require(__dirname + '/plugins/aws/rds/rdsMinorVersionUpgrade.js'),
'sqlServerTLSVersion' : require(__dirname + '/plugins/aws/rds/sqlServerTLSVersion'),
'rdsTransportEncryption' : require(__dirname + '/plugins/aws/rds/rdsTransportEncryption'),
'domainAutoRenew' : require(__dirname + '/plugins/aws/route53/domainAutoRenew.js'),
'domainExpiry' : require(__dirname + '/plugins/aws/route53/domainExpiry.js'),
'domainTransferLock' : require(__dirname + '/plugins/aws/route53/domainTransferLock.js'),
'danglingDnsRecords' : require(__dirname + '/plugins/aws/route53/danglingDnsRecords.js'),
'bucketEncryptionInTransit' : require(__dirname + '/plugins/aws/s3/bucketEncryptionInTransit.js'),
'bucketAllUsersPolicy' : require(__dirname + '/plugins/aws/s3/bucketAllUsersPolicy.js'),
'bucketAllUsersAcl' : require(__dirname + '/plugins/aws/s3/bucketAllUsersAcl.js'),
'bucketPolicyCloudFrontOai' : require(__dirname + '/plugins/aws/s3/bucketPolicyCloudFrontOai.js'),
'bucketVersioning' : require(__dirname + '/plugins/aws/s3/bucketVersioning.js'),
'bucketLogging' : require(__dirname + '/plugins/aws/s3/bucketLogging.js'),
's3Encryption' : require(__dirname + '/plugins/aws/s3/s3Encryption.js'),
'bucketPublicAccessBlock' : require(__dirname + '/plugins/aws/s3/bucketPublicAccessBlock.js'),
'bucketEncryption' : require(__dirname + '/plugins/aws/s3/bucketEncryption.js'),
'bucketWebsiteEnabled' : require(__dirname + '/plugins/aws/s3/bucketWebsiteEnabled.js'),
'bucketEnforceEncryption' : require(__dirname + '/plugins/aws/s3/bucketEnforceEncryption.js'),
'bucketSecureTransportEnabled' : require(__dirname + '/plugins/aws/s3/bucketSecureTransportEnabled.js'),
'bucketTransferAcceleration' : require(__dirname + '/plugins/aws/s3/bucketTransferAcceleration'),
'bucketDnsCompliantName' : require(__dirname + '/plugins/aws/s3/bucketDnsCompliantName.js'),
'notebookDataEncrypted' : require(__dirname + '/plugins/aws/sagemaker/notebookDataEncrypted.js'),
'notebookDirectInternetAccess' : require(__dirname + '/plugins/aws/sagemaker/notebookDirectInternetAccess.js'),
'dkimEnabled' : require(__dirname + '/plugins/aws/ses/dkimEnabled.js'),
'topicEncrypted' : require(__dirname + '/plugins/aws/sns/topicEncrypted.js'),
'topicPolicies' : require(__dirname + '/plugins/aws/sns/topicPolicies.js'),
'topicCmkEncrypted' : require(__dirname + '/plugins/aws/sns/topicCmkEncrypted.js'),
'sqsCrossAccount' : require(__dirname + '/plugins/aws/sqs/sqsCrossAccount.js'),
'sqsDeadLetterQueue' : require(__dirname + '/plugins/aws/sqs/sqsDeadLetterQueue.js'),
'sqsEncrypted' : require(__dirname + '/plugins/aws/sqs/sqsEncrypted.js'),
'sqsPublicAccess' : require(__dirname + '/plugins/aws/sqs/sqsPublicAccess.js'),
'queueUnprocessedMessages' : require(__dirname + '/plugins/aws/sqs/queueUnprocessedMessages.js'),
'ssmEncryptedParameters' : require(__dirname + '/plugins/aws/ssm/ssmEncryptedParameters.js'),
'ssmActiveOnAllInstances' : require(__dirname + '/plugins/aws/ssm/ssmActiveOnAllInstances.js'),
'ssmAgentLatestVersion' : require(__dirname + '/plugins/aws/ssm/ssmAgentLatestVersion.js'),
'ssmAgentAutoUpdateEnabled' : require(__dirname + '/plugins/aws/ssm/ssmAgentAutoUpdateEnabled'),
'lambdaAdminPrivileges' : require(__dirname + '/plugins/aws/lambda/lambdaAdminPrivileges.js'),
'envVarsClientSideEncryption' : require(__dirname + '/plugins/aws/lambda/envVarsClientSideEncryption.js'),
'lambdaOldRuntimes' : require(__dirname + '/plugins/aws/lambda/lambdaOldRuntimes.js'),
'lambdaVpcConfig' : require(__dirname + '/plugins/aws/lambda/lambdaVpcConfig.js'),
'lambdaPublicAccess' : require(__dirname + '/plugins/aws/lambda/lambdaPublicAccess.js'),
'lambdaLogGroups' : require(__dirname + '/plugins/aws/lambda/lambdaLogGroups.js'),
'lambdaTracingEnabled' : require(__dirname + '/plugins/aws/lambda/lambdaTracingEnabled.js'),
'monitoringMetrics' : require(__dirname + '/plugins/aws/cloudwatchlogs/monitoringMetrics.js'),
'logRetentionPeriod' : require(__dirname + '/plugins/aws/cloudwatchlogs/logRetentionPeriod.js'),
'auditLoggingEnabled' : require(__dirname + '/plugins/aws/redshift/auditLoggingEnabled.js'),
'redshiftClusterCmkEncrypted' : require(__dirname + '/plugins/aws/redshift/redshiftClusterCmkEncrypted.js'),
'redshiftEncryptionEnabled' : require(__dirname + '/plugins/aws/redshift/redshiftEncryptionEnabled.js'),
'redshiftPubliclyAccessible' : require(__dirname + '/plugins/aws/redshift/redshiftPubliclyAccessible.js'),
'redshiftAllowVersionUpgrade' : require(__dirname + '/plugins/aws/redshift/redshiftAllowVersionUpgrade.js'),
'redshiftSSLEnabled' : require(__dirname + '/plugins/aws/redshift/redshiftSSLEnabled.js'),
'redshiftClusterInVpc' : require(__dirname + '/plugins/aws/redshift/redshiftClusterInVpc.js'),
'redshiftClusterDefaultPort' : require(__dirname + '/plugins/aws/redshift/redshiftClusterDefaultPort.js'),
'redshiftClusterMasterUsername' : require(__dirname + '/plugins/aws/redshift/redshiftClusterMasterUsername.js'),
'snapshotRetentionPeriod' : require(__dirname + '/plugins/aws/redshift/snapshotRetentionPeriod.js'),
'userActivityLoggingEnabled' : require(__dirname + '/plugins/aws/redshift/userActivityLoggingEnabled.js'),
'redshiftNodesCount' : require(__dirname + '/plugins/aws/redshift/redshiftNodesCount.js'),
'redshiftUnusedReservedNodes' : require(__dirname + '/plugins/aws/redshift/redshiftUnusedReservedNodes.js'),
'redshiftDesiredNodeType' : require(__dirname + '/plugins/aws/redshift/redshiftDesiredNodeType.js'),
'transferLoggingEnabled' : require(__dirname + '/plugins/aws/transfer/transferLoggingEnabled.js'),
'shieldAdvancedEnabled' : require(__dirname + '/plugins/aws/shield/shieldAdvancedEnabled.js'),
'shieldEmergencyContacts' : require(__dirname + '/plugins/aws/shield/shieldEmergencyContacts.js'),
'shieldProtections' : require(__dirname + '/plugins/aws/shield/shieldProtections.js'),
'enableAllFeatures' : require(__dirname + '/plugins/aws/organizations/enableAllFeatures.js'),
'organizationInvite' : require(__dirname + '/plugins/aws/organizations/organizationInvite.js'),
'guardDutyEnabled' : require(__dirname + '/plugins/aws/guardduty/guarddutyEnabled.js'),
'guardDutyMaster' : require(__dirname + '/plugins/aws/guardduty/guarddutyMaster.js'),
'workspacesVolumeEncryption' : require(__dirname + '/plugins/aws/workspaces/workspacesVolumeEncryption.js'),
'workspacesIpAccessControl' : require(__dirname + '/plugins/aws/workspaces/workspacesIpAccessControl.js'),
'xrayEncryptionEnabled' : require(__dirname + '/plugins/aws/xray/xrayEncryptionEnabled.js'),
},
azure : {
'fileServiceEncryption' : require(__dirname + '/plugins/azure/storageaccounts/fileServiceEncryption.js'),
'networkAccessDefaultAction' : require(__dirname + '/plugins/azure/storageaccounts/networkAccessDefaultAction.js'),
'storageAccountsHttps' : require(__dirname + '/plugins/azure/storageaccounts/storageAccountsHttps.js'),
'storageAccountsEncryption' : require(__dirname + '/plugins/azure/storageaccounts/storageAccountsEncryption.js'),
'logStorageEncryption' : require(__dirname + '/plugins/azure/storageaccounts/logStorageEncryption.js'),
'logContainerPublicAccess' : require(__dirname + '/plugins/azure/storageaccounts/logContainerPublicAccess.js'),
'storageAccountsAADEnabled' : require(__dirname + '/plugins/azure/storageaccounts/storageAccountsAADEnabled.js'),
'blobServiceEncryption' : require(__dirname + '/plugins/azure/storageaccounts/blobServiceEncryption.js'),
'trustedMsAccessEnabled' : require(__dirname + '/plugins/azure/storageaccounts/trustedMsAccessEnabled.js'),
'blobContainersPrivateAccess' : require(__dirname + '/plugins/azure/blobservice/blobContainersPrivateAccess.js'),
'blobServiceImmutable' : require(__dirname + '/plugins/azure/blobservice/blobServiceImmutable.js'),
'fileServiceAllAccessAcl' : require(__dirname + '/plugins/azure/fileservice/fileServiceAllAccessAcl.js'),
'tableServiceAllAccessAcl' : require(__dirname + '/plugins/azure/tableservice/tableServiceAllAccessAcl.js'),
'queueServiceAllAccessAcl' : require(__dirname + '/plugins/azure/queueservice/queueServiceAllAccessAcl.js'),
'multipleSubnets' : require(__dirname + '/plugins/azure/virtualnetworks/multipleSubnets.js'),
'vmInstanceLimit' : require(__dirname + '/plugins/azure/virtualmachines/vmInstanceLimit.js'),
'classicInstances' : require(__dirname + '/plugins/azure/virtualmachines/classicInstances.js'),
'vmAgentEnabled' : require(__dirname + '/plugins/azure/virtualmachines/vmAgentEnabled.js'),
'vmDiskOSEncryption' : require(__dirname + '/plugins/azure/virtualmachines/vmDiskOSEncryption.js'),
'vmDiskDataEncryption' : require(__dirname + '/plugins/azure/virtualmachines/vmDiskDataEncryption.js'),
'vmEndpointProtection' : require(__dirname + '/plugins/azure/virtualmachines/vmEndpointProtection.js'),
'vmAutoUpdateEnabled' : require(__dirname + '/plugins/azure/virtualmachines/vmAutoUpdateEnabled.js'),
'vmAvailabilitySetEnabled' : require(__dirname + '/plugins/azure/virtualmachines/vmAvailabilitySetEnabled.js'),
'scaleSetMultiAz' : require(__dirname + '/plugins/azure/virtualmachines/scaleSetMultiAz.js'),
'scaleSetAutoscaleEnabled' : require(__dirname + '/plugins/azure/virtualmachines/scaleSetAutoscaleEnabled.js'),
'vmAvailabilitySetLimit' : require(__dirname + '/plugins/azure/virtualmachines/vmAvailabilitySetLimit.js'),
'lbLogAnalyticsEnabled' : require(__dirname + '/plugins/azure/monitor/lbLogAnalyticsEnabled.js'),
'kvLogAnalyticsEnabled' : require(__dirname + '/plugins/azure/monitor/kvLogAnalyticsEnabled.js'),
'nsgLogAnalyticsEnabled' : require(__dirname + '/plugins/azure/monitor/nsgLogAnalyticsEnabled.js'),
'logProfileArchiveData' : require(__dirname + '/plugins/azure/monitor/logProfileArchiveData.js'),
'logProfileRetentionPolicy' : require(__dirname + '/plugins/azure/monitor/logProfileRetentionPolicy.js'),
'securityPolicyAlertsEnabled' : require(__dirname + '/plugins/azure/logalerts/securityPolicyAlertsEnabled.js'),
'nsgLoggingEnabled' : require(__dirname + '/plugins/azure/logalerts/nsgLoggingEnabled.js'),
'sqlServerFirewallRuleEnabled' : require(__dirname + '/plugins/azure/logalerts/sqlServerFirewallRuleEnabled.js'),
'virtualNetworkRuleEnabled' : require(__dirname + '/plugins/azure/logalerts/virtualNetworkRuleEnabled.js'),
'securitySolutionLogging' : require(__dirname + '/plugins/azure/logalerts/securitySolutionLogging.js'),
'nsgRuleLoggingEnabled' : require(__dirname + '/plugins/azure/logalerts/nsgRuleLoggingEnabled.js'),
'policyAssignmentLogging' : require(__dirname + '/plugins/azure/logalerts/policyAssignmentLogging.js'),
'monitorEndpointProtection' : require(__dirname + '/plugins/azure/securitycenter/monitorEndpointProtection.js'),
'monitorBlobEncryption' : require(__dirname + '/plugins/azure/securitycenter/monitorBlobEncryption.js'),
'monitorSystemUpdates' : require(__dirname + '/plugins/azure/securitycenter/monitorSystemUpdates.js'),
'monitorJitNetworkAccess' : require(__dirname + '/plugins/azure/securitycenter/monitorJitNetworkAccess.js'),
'monitorVMVulnerability' : require(__dirname + '/plugins/azure/securitycenter/monitorVMVulnerability.js'),
'monitorSQLEncryption' : require(__dirname + '/plugins/azure/securitycenter/monitorSqlEncryption.js'),
'monitorSQLAuditing' : require(__dirname + '/plugins/azure/securitycenter/monitorSqlAuditing.js'),
'monitorDiskEncryption' : require(__dirname + '/plugins/azure/securitycenter/monitorDiskEncryption.js'),
'appWhitelistingEnabled' : require(__dirname + '/plugins/azure/securitycenter/appWhitelistingEnabled.js'),
'securityConfigMonitoring' : require(__dirname + '/plugins/azure/securitycenter/securityConfigMonitoring.js'),
'autoProvisioningEnabled' : require(__dirname + '/plugins/azure/securitycenter/autoProvisioningEnabled.js'),
'adminSecurityAlertsEnabled' : require(__dirname + '/plugins/azure/securitycenter/adminSecurityAlertsEnabled.js'),
'securityContactsEnabled' : require(__dirname + '/plugins/azure/securitycenter/securityContactsEnabled.js'),
'monitorNsgEnabled' : require(__dirname + '/plugins/azure/securitycenter/monitorNsgEnabled.js'),
'highSeverityAlertsEnabled' : require(__dirname + '/plugins/azure/securitycenter/highSeverityAlertsEnabled.js'),
'standardPricingEnabled' : require(__dirname + '/plugins/azure/securitycenter/standardPricingEnabled.js'),
'resourceAllowedLocations' : require(__dirname + '/plugins/azure/policyservice/resourceAllowedLocations.js'),
'resourceLocationMatch' : require(__dirname + '/plugins/azure/policyservice/resourceLocationMatch.js'),
'enforceMySQLSSLConnection' : require(__dirname + '/plugins/azure/mysqlserver/enforceMySQLSSLConnection.js'),
'logRetentionDays' : require(__dirname + '/plugins/azure/postgresqlserver/logRetentionDays.js'),
'connectionThrottlingEnabled' : require(__dirname + '/plugins/azure/postgresqlserver/connectionThrottlingEnabled.js'),
'logDurationEnabled' : require(__dirname + '/plugins/azure/postgresqlserver/logDurationEnabled.js'),
'logDisconnectionsEnabled' : require(__dirname + '/plugins/azure/postgresqlserver/logDisconnectionsEnabled.js'),
'logConnectionsEnabled' : require(__dirname + '/plugins/azure/postgresqlserver/logConnectionsEnabled.js'),
'logCheckpointsEnabled' : require(__dirname + '/plugins/azure/postgresqlserver/logCheckpointsEnabled.js'),
'enforcePostgresSSLConnection' : require(__dirname + '/plugins/azure/postgresqlserver/enforcePostgresSSLConnection.js'),
'openOracleAutoDataWarehouse' : require(__dirname + '/plugins/azure/networksecuritygroups/openOracleAutoDataWarehouse.js'),
'networkWatcherEnabled' : require(__dirname + '/plugins/azure/networksecuritygroups/networkWatcherEnabled.js'),
'excessiveSecurityGroups' : require(__dirname + '/plugins/azure/networksecuritygroups/excessiveSecurityGroups.js'),
'defaultSecurityGroup' : require(__dirname + '/plugins/azure/networksecuritygroups/defaultSecurityGroup.js'),
'openAllPorts' : require(__dirname + '/plugins/azure/networksecuritygroups/openAllPorts.js'),
'openSMTP' : require(__dirname + '/plugins/azure/networksecuritygroups/openSMTP.js'),
'openOracle' : require(__dirname + '/plugins/azure/networksecuritygroups/openOracle.js'),
'openKibana' : require(__dirname + '/plugins/azure/networksecuritygroups/openKibana.js'),
'openHadoopNameNode' : require(__dirname + '/plugins/azure/networksecuritygroups/openHadoopNameNode.js'),
'openHadoopNameNodeWebUI' : require(__dirname + '/plugins/azure/networksecuritygroups/openHadoopNameNodeWebUI.js'),
'openFTP' : require(__dirname + '/plugins/azure/networksecuritygroups/openFTP.js'),
'openSSH' : require(__dirname + '/plugins/azure/networksecuritygroups/openSSH.js'),
'openCIFS' : require(__dirname + '/plugins/azure/networksecuritygroups/openCIFS.js'),
'openDocker' : require(__dirname + '/plugins/azure/networksecuritygroups/openDocker.js'),
'openDNS' : require(__dirname + '/plugins/azure/networksecuritygroups/openDNS.js'),
'openRDP' : require(__dirname + '/plugins/azure/networksecuritygroups/openRDP.js'),
'openTelnet' : require(__dirname + '/plugins/azure/networksecuritygroups/openTelnet.js'),
'openVNCServer' : require(__dirname + '/plugins/azure/networksecuritygroups/openVNCServer.js'),
'openVNCClient' : require(__dirname + '/plugins/azure/networksecuritygroups/openVNCClient.js'),
'openMySQL' : require(__dirname + '/plugins/azure/networksecuritygroups/openMySQL.js'),
'openNetBIOS' : require(__dirname + '/plugins/azure/networksecuritygroups/openNetBIOS.js'),
'openPostgreSQL' : require(__dirname + '/plugins/azure/networksecuritygroups/openPostgreSQL.js'),
'openRPC' : require(__dirname + '/plugins/azure/networksecuritygroups/openRPC.js'),
'openSalt' : require(__dirname + '/plugins/azure/networksecuritygroups/openSalt.js'),
'openSMBoTCP' : require(__dirname + '/plugins/azure/networksecuritygroups/openSMBoTCP.js'),
'openSQLServer' : require(__dirname + '/plugins/azure/networksecuritygroups/openSQLServer.js'),
'resourceUsageLimit' : require(__dirname + '/plugins/azure/resources/resourceUsageLimit.js'),
'managementLockEnabled' : require(__dirname + '/plugins/azure/resources/managementLockEnabled.js'),
'emailAccountAdminsEnabled' : require(__dirname + '/plugins/azure/sqlserver/emailAccountAdminsEnabled.js'),
'sendAlertsEnabled' : require(__dirname + '/plugins/azure/sqlserver/sendAlertsEnabled.js'),
'advancedDataSecurityEnabled' : require(__dirname + '/plugins/azure/sqlserver/advancedDataSecurityEnabled.js'),
'tdeProtectorEncrypted' : require(__dirname + '/plugins/azure/sqlserver/tdeProtectorEncrypted.js'),
'noPublicAccess' : require(__dirname + '/plugins/azure/sqlserver/noPublicAccess.js'),
'auditRetentionPolicy' : require(__dirname + '/plugins/azure/sqlserver/auditRetentionPolicy.js'),
'auditActionGroupsEnabled' : require(__dirname + '/plugins/azure/sqlserver/auditActionGroupsEnabled.js'),
'serverAuditingEnabled' : require(__dirname + '/plugins/azure/sqlserver/serverAuditingEnabled.js'),
'azureADAdminEnabled' : require(__dirname + '/plugins/azure/sqlserver/azureADAdminEnabled.js'),
'javaVersion' : require(__dirname + '/plugins/azure/appservice/javaVersion.js'),
'phpVersion' : require(__dirname + '/plugins/azure/appservice/phpVersion.js'),
'pythonVersion' : require(__dirname + '/plugins/azure/appservice/pythonVersion.js'),
'clientCertEnabled' : require(__dirname + '/plugins/azure/appservice/clientCertEnabled.js'),
'netFrameworkVersion' : require(__dirname + '/plugins/azure/appservice/netFrameworkVersion.js'),
'authEnabled' : require(__dirname + '/plugins/azure/appservice/authEnabled.js'),
'identityEnabled' : require(__dirname + '/plugins/azure/appservice/identityEnabled.js'),
'http20Enabled' : require(__dirname + '/plugins/azure/appservice/http20Enabled.js'),
'httpsOnlyEnabled' : require(__dirname + '/plugins/azure/appservice/httpsOnlyEnabled.js'),
'tlsVersionCheck' : require(__dirname + '/plugins/azure/appservice/tlsVersionCheck.js'),
'rbacEnabled' : require(__dirname + '/plugins/azure/kubernetesservice/rbacEnabled.js'),
'aksLatestVersion' : require(__dirname + '/plugins/azure/kubernetesservice/aksLatestVersion.js'),
'aksAgentVersion' : require(__dirname + '/plugins/azure/kubernetesservice/aksAgentVersion.js'),
'acrAdminUser' : require(__dirname + '/plugins/azure/containerregistry/acrAdminUser.js'),
'endpointLoggingEnabled' : require(__dirname + '/plugins/azure/cdnprofiles/endpointLoggingEnabled.js'),
'detectInsecureCustomOrigin' : require(__dirname + '/plugins/azure/cdnprofiles/detectInsecureCustomOrigin.js'),
'passwordRequiresLowercase' : require(__dirname + '/plugins/azure/activedirectory/passwordRequiresLowercase.js'),
'passwordRequiresNumbers' : require(__dirname + '/plugins/azure/activedirectory/passwordRequiresNumbers.js'),
'passwordRequiresSymbols' : require(__dirname + '/plugins/azure/activedirectory/passwordRequiresSymbols.js'),
'passwordRequiresUppercase' : require(__dirname + '/plugins/azure/activedirectory/passwordRequiresUppercase.js'),
'minPasswordLength' : require(__dirname + '/plugins/azure/activedirectory/minPasswordLength.js'),
'ensureNoGuestUser' : require(__dirname + '/plugins/azure/activedirectory/ensureNoGuestUser.js'),
'noCustomOwnerRoles' : require(__dirname + '/plugins/azure/activedirectory/noCustomOwnerRoles.js'),
'dbAuditingEnabled' : require(__dirname + '/plugins/azure/sqldatabases/dbAuditingEnabled.js'),
'sqlDbMultiAz' : require(__dirname + '/plugins/azure/sqldatabases/sqlDbMultiAz.js'),
'dbRestorable' : require(__dirname + '/plugins/azure/sqldatabases/dbRestorable.js'),
'lbHttpsOnly' : require(__dirname + '/plugins/azure/loadbalancer/lbHttpsOnly.js'),
'lbNoInstances' : require(__dirname + '/plugins/azure/loadbalancer/lbNoInstances.js'),
'kvRecoveryEnabled' : require(__dirname + '/plugins/azure/keyvaults/kvRecoveryEnabled.js'),
'keyExpirationEnabled' : require(__dirname + '/plugins/azure/keyvaults/keyExpirationEnabled.js'),
'secretExpirationEnabled' : require(__dirname + '/plugins/azure/keyvaults/secretExpirationEnabled.js'),
},
github: {
'publicKeysRotated' : require(__dirname + '/plugins/github/users/publicKeysRotated.js'),
'gpgKeysRotated' : require(__dirname + '/plugins/github/users/gpgKeysRotated.js'),
'userMfaEnabled' : require(__dirname + '/plugins/github/users/userMfaEnabled.js'),
'userPrivateEmails' : require(__dirname + '/plugins/github/users/userPrivateEmails.js'),
'orgPlanLimit' : require(__dirname + '/plugins/github/orgs/orgPlanLimit.js'),
'orgDefaultPermission' : require(__dirname + '/plugins/github/orgs/orgDefaultPermission.js'),
'orgMfaRequired' : require(__dirname + '/plugins/github/orgs/orgMfaRequired.js'),
'orgExcessiveOwners' : require(__dirname + '/plugins/github/orgs/orgExcessiveOwners.js'),
'repoDeployKeysRotated' : require(__dirname + '/plugins/github/repos/repoDeployKeysRotated.js'),
'repoOutsideCollaborators' : require(__dirname + '/plugins/github/repos/repoOutsideCollaborators.js')
},
oracle: {
'instanceMonitoringEnabled' : require(__dirname + '/plugins/oracle/compute/instanceMonitoringEnabled.js'),
'autoscaleEnabled' : require(__dirname + '/plugins/oracle/compute/autoscaleEnabled.js'),
'instancePoolMultiAD' : require(__dirname + '/plugins/oracle/compute/instancePoolMultiAD.js'),
'instanceMaxCount' : require(__dirname + '/plugins/oracle/compute/instanceMaxCount.js'),
'bootVolumeTransitEncryption' : require(__dirname + '/plugins/oracle/compute/bootVolumeTransitEncryption.js'),
'bootVolumeRestorable' : require(__dirname + '/plugins/oracle/compute/bootVolumeRestorable.js'),
'bootVolumeBackupEnabled' : require(__dirname + '/plugins/oracle/compute/bootVolumeBackupEnabled.js'),
'instancePolicyProtection' : require(__dirname + '/plugins/oracle/compute/instancePolicyProtection.js'),
'usersMfaEnabled' : require(__dirname + '/plugins/oracle/identity/usersMfaEnabled.js'),
'passwordRequiresLowercase' : require(__dirname + '/plugins/oracle/identity/passwordRequiresLowercase.js'),
'passwordRequiresNumbers' : require(__dirname + '/plugins/oracle/identity/passwordRequiresNumbers.js'),
'passwordRequiresSymbols' : require(__dirname + '/plugins/oracle/identity/passwordRequiresSymbols.js'),
'passwordRequiresUppercase' : require(__dirname + '/plugins/oracle/identity/passwordRequiresUppercase.js'),
'minPasswordLength' : require(__dirname + '/plugins/oracle/identity/minPasswordLength.js'),
'emptyGroups' : require(__dirname + '/plugins/oracle/identity/emptyGroups.js'),
'excessivePolicies' : require(__dirname + '/plugins/oracle/identity/excessivePolicies.js'),
'excessivePolicyStatements' : require(__dirname + '/plugins/oracle/identity/excessivePolicyStatements.js'),
'policyLeastPrivilege' : require(__dirname + '/plugins/oracle/identity/policyLeastPrivilege.js'),
'openSSH' : require(__dirname + '/plugins/oracle/networking/openSSH.js'),
'openOracleAutoDataWarehouse' : require(__dirname + '/plugins/oracle/networking/openOracleAutoDataWarehouse.js'),
'openAllPortsProtocols' : require(__dirname + '/plugins/oracle/networking/openAllPortsProtocols.js'),
'openRPC' : require(__dirname + '/plugins/oracle/networking/openRPC.js'),
'openRDP' : require(__dirname + '/plugins/oracle/networking/openRDP.js'),
'openVNCServer' : require(__dirname + '/plugins/oracle/networking/openVNCServer.js'),
'openVNCClient' : require(__dirname + '/plugins/oracle/networking/openVNCClient.js'),
'openTelnet' : require(__dirname + '/plugins/oracle/networking/openTelnet.js'),
'openSMBoTCP' : require(__dirname + '/plugins/oracle/networking/openSMBoTCP.js'),
'openOracle' : require(__dirname + '/plugins/oracle/networking/openOracle.js'),
'openPostgreSQL' : require(__dirname + '/plugins/oracle/networking/openPostgreSQL.js'),
'openNetBIOS' : require(__dirname + '/plugins/oracle/networking/openNetBIOS.js'),
'openMySQL' : require(__dirname + '/plugins/oracle/networking/openMySQL.js'),
'openFTP' : require(__dirname + '/plugins/oracle/networking/openFTP.js'),
'openCIFS' : require(__dirname + '/plugins/oracle/networking/openCIFS.js'),
'openDNS' : require(__dirname + '/plugins/oracle/networking/openDNS.js'),
'openDocker' : require(__dirname + '/plugins/oracle/networking/openDocker.js'),
'openSQLServer' : require(__dirname + '/plugins/oracle/networking/openSQLServer.js'),
'openHadoopNameNode' : require(__dirname + '/plugins/oracle/networking/openHadoopNameNode.js'),
'openHadoopNameNodeWebUI' : require(__dirname + '/plugins/oracle/networking/openHadoopNameNodeWebUI.js'),
'openKibana' : require(__dirname + '/plugins/oracle/networking/openKibana.js'),
'openSalt' : require(__dirname + '/plugins/oracle/networking/openSalt.js'),
'openSMTP' : require(__dirname + '/plugins/oracle/networking/openSMTP.js'),
'statelessSecurityRules' : require(__dirname + '/plugins/oracle/networking/statelessSecurityRules.js'),
'defaultSecurityList' : require(__dirname + '/plugins/oracle/networking/defaultSecurityList.js'),
'excessiveSecurityLists' : require(__dirname + '/plugins/oracle/networking/excessiveSecurityLists.js'),
'lbHttpsOnly' : require(__dirname + '/plugins/oracle/networking/lbHttpsOnly.js'),
'lbNSGEnabled' : require(__dirname + '/plugins/oracle/networking/lbNSGEnabled.js'),
'lbNoInstances' : require(__dirname + '/plugins/oracle/networking/lbNoInstances.js'),
'wafPublicIpEnabled' : require(__dirname + '/plugins/oracle/networking/wafPublicIpEnabled.js'),
'multipleSubnets' : require(__dirname + '/plugins/oracle/networking/multipleSubnets.js'),
'subnetMultiAd' : require(__dirname + '/plugins/oracle/networking/subnetMultiAd.js'),
'bucketPublicAccessType' : require(__dirname + '/plugins/oracle/objectstore/bucketPublicAccessType.js'),
'preAuthRequestsExpiry' : require(__dirname + '/plugins/oracle/objectstore/preAuthRequestsExpiry.js'),
'preAuthRequestsAccess' : require(__dirname + '/plugins/oracle/objectstore/preAuthRequestsAccess.js'),
'objectPolicyProtection' : require(__dirname + '/plugins/oracle/objectstore/objectPolicyProtection.js'),
'nfsPublicAccess' : require(__dirname + '/plugins/oracle/filestorage/nfsPublicAccess.js'),
'nfsPolicyProtection' : require(__dirname + '/plugins/oracle/filestorage/nfsPolicyProtection.js'),
'dbBackupEnabled' : require(__dirname + '/plugins/oracle/database/dbBackupEnabled.js'),
'dbPrivateSubnetOnly' : require(__dirname + '/plugins/oracle/database/dbPrivateSubnetOnly.js'),
'dbNSGEnabled' : require(__dirname + '/plugins/oracle/database/dbNSGEnabled.js'),
'dbPolicyProtection' : require(__dirname + '/plugins/oracle/database/dbPolicyProtection.js'),
'blockVolumeRestorable' : require(__dirname + '/plugins/oracle/blockstorage/blockVolumeRestorable.js'),
'blockVolumeBackupEnabled' : require(__dirname + '/plugins/oracle/blockstorage/blockVolumeBackupEnabled.js'),
'volumeGroupsRestorable' : require(__dirname + '/plugins/oracle/blockstorage/volumeGroupsRestorable.js'),
'blockPolicyProtection' : require(__dirname + '/plugins/oracle/blockstorage/blockPolicyProtection.js'),
'logRetentionPeriod' : require(__dirname + '/plugins/oracle/audit/logRetentionPeriod.js'),
},
google: {
'excessiveFirewallRules' : require(__dirname + '/plugins/google/vpcnetwork/excessiveFirewallRules.js'),
'openDNS' : require(__dirname + '/plugins/google/vpcnetwork/openDNS.js'),
'openDocker' : require(__dirname + '/plugins/google/vpcnetwork/openDocker.js'),
'openSSH' : require(__dirname + '/plugins/google/vpcnetwork/openSSH.js'),
'openCIFS' : require(__dirname + '/plugins/google/vpcnetwork/openCIFS.js'),
'openAllPorts' : require(__dirname + '/plugins/google/vpcnetwork/openAllPorts.js'),
'openFTP' : require(__dirname + '/plugins/google/vpcnetwork/openFTP.js'),
'openHadoopNameNode' : require(__dirname + '/plugins/google/vpcnetwork/openHadoopNameNode.js'),
'openHadoopNameNodeWebUI' : require(__dirname + '/plugins/google/vpcnetwork/openHadoopNameNodeWebUI.js'),
'openKibana' : require(__dirname + '/plugins/google/vpcnetwork/openKibana.js'),
'openMySQL' : require(__dirname + '/plugins/google/vpcnetwork/openMySQL.js'),
'openNetBIOS' : require(__dirname + '/plugins/google/vpcnetwork/openNetBIOS.js'),
'openOracle' : require(__dirname + '/plugins/google/vpcnetwork/openOracle.js'),
'openPostgreSQL' : require(__dirname + '/plugins/google/vpcnetwork/openPostgreSQL.js'),
'openRDP' : require(__dirname + '/plugins/google/vpcnetwork/openRDP.js'),
'openRPC' : require(__dirname + '/plugins/google/vpcnetwork/openRPC.js'),
'openSalt' : require(__dirname + '/plugins/google/vpcnetwork/openSalt.js'),
'openSMBoTCP' : require(__dirname + '/plugins/google/vpcnetwork/openSMBoTCP.js'),
'openSMTP' : require(__dirname + '/plugins/google/vpcnetwork/openSMTP.js'),
'openSQLServer' : require(__dirname + '/plugins/google/vpcnetwork/openSQLServer.js'),
'openTelnet' : require(__dirname + '/plugins/google/vpcnetwork/openTelnet.js'),
'openVNCClient' : require(__dirname + '/plugins/google/vpcnetwork/openVNCClient.js'),
'openVNCServer' : require(__dirname + '/plugins/google/vpcnetwork/openVNCServer.js'),
'openOracleAutoDataWarehouse' : require(__dirname + '/plugins/google/vpcnetwork/openOracleAutoDataWarehouse.js'),
'multipleSubnets' : require(__dirname + '/plugins/google/vpcnetwork/multipleSubnets.js'),
'defaultVpcInUse' : require(__dirname + '/plugins/google/vpcnetwork/defaultVpcInUse.js'),
'flowLogsEnabled' : require(__dirname + '/plugins/google/vpcnetwork/flowLogsEnabled.js'),
'privateAccessEnabled' : require(__dirname + '/plugins/google/vpcnetwork/privateAccessEnabled.js'),
'instanceMaxCount' : require(__dirname + '/plugins/google/compute/instanceMaxCount.js'),
'instancesMultiAz' : require(__dirname + '/plugins/google/compute/instancesMultiAz.js'),
'autoscaleEnabled' : require(__dirname + '/plugins/google/compute/autoscaleEnabled.js'),
'instanceLevelSSHOnly' : require(__dirname + '/plugins/google/compute/instanceLevelSSHOnly.js'),
'instanceLeastPrivilege' : require(__dirname + '/plugins/google/compute/instanceLeastPrivilege.js'),
'ipForwardingDisabled' : require(__dirname + '/plugins/google/compute/ipForwardingDisabled.js'),
'connectSerialPortsDisabled' : require(__dirname + '/plugins/google/compute/connectSerialPortsDisabled.js'),
'csekEncryptionEnabled' : require(__dirname + '/plugins/google/compute/csekEncryptionEnabled.js'),
'osLoginEnabled' : require(__dirname + '/plugins/google/compute/osLoginEnabled.js'),
'keyRotation' : require(__dirname + '/plugins/google/cryptographickeys/keyRotation.js'),
'dbRestorable' : require(__dirname + '/plugins/google/sql/dbRestorable.js'),
'dbAutomatedBackups' : require(__dirname + '/plugins/google/sql/dbAutomatedBackups.js'),
'dbMultiAz' : require(__dirname + '/plugins/google/sql/dbMultiAz.js'),
'dbPubliclyAccessible' : require(__dirname + '/plugins/google/sql/dbPubliclyAccessible.js'),
'dbSSLEnabled' : require(__dirname + '/plugins/google/sql/dbSSLEnabled.js'),
'anyHostRootAccess' : require(__dirname + '/plugins/google/sql/anyHostRootAccess.js'),
'bucketVersioning' : require(__dirname + '/plugins/google/storage/bucketVersioning.js'),
'bucketLogging' : require(__dirname + '/plugins/google/storage/bucketLogging.js'),
'bucketAllUsersPolicy' : require(__dirname + '/plugins/google/storage/bucketAllUsersPolicy.js'),
'clbHttpsOnly' : require(__dirname + '/plugins/google/clb/clbHttpsOnly.js'),
'clbNoInstances' : require(__dirname + '/plugins/google/clb/clbNoInstances.js'),
'clbSecurityPolicyEnabled' : require(__dirname + '/plugins/google/clb/clbSecurityPolicyEnabled.js'),
'clbCDNEnabled' : require(__dirname + '/plugins/google/clb/clbCDNEnabled.js'),
'serviceLimits' : require(__dirname + '/plugins/google/iam/serviceLimits.js'),
'serviceAccountAdmin' : require(__dirname + '/plugins/google/iam/serviceAccountAdmin.js'),
'serviceAccountUser' : require(__dirname + '/plugins/google/iam/serviceAccountUser.js'),
'serviceAccountSeparation' : require(__dirname + '/plugins/google/iam/serviceAccountSeparation.js'),
'kmsUserSeparation' : require(__dirname + '/plugins/google/iam/kmsUserSeparation.js'),
'serviceAccountKeyRotation' : require(__dirname + '/plugins/google/iam/serviceAccountKeyRotation.js'),
'serviceAccountManagedKeys' : require(__dirname + '/plugins/google/iam/serviceAccountManagedKeys.js'),
'corporateEmailsOnly' : require(__dirname + '/plugins/google/iam/corporateEmailsOnly.js'),
'privateEndpoint' : require(__dirname + '/plugins/google/kubernetes/privateEndpoint.js'),
'monitoringEnabled' : require(__dirname + '/plugins/google/kubernetes/monitoringEnabled.js'),
'clusterLeastPrivilege' : require(__dirname + '/plugins/google/kubernetes/clusterLeastPrivilege.js'),
'loggingEnabled' : require(__dirname + '/plugins/google/kubernetes/loggingEnabled.js'),
'aliasIpRangesEnabled' : require(__dirname + '/plugins/google/kubernetes/aliasIpRangesEnabled.js'),
'legacyAuthorizationDisabled' : require(__dirname + '/plugins/google/kubernetes/legacyAuthorizationDisabled.js'),
'masterAuthorizedNetwork' : require(__dirname + '/plugins/google/kubernetes/masterAuthorizedNetwork.js'),
'clusterLabelsAdded' : require(__dirname + '/plugins/google/kubernetes/clusterLabelsAdded.js'),
'webDashboardDisabled' : require(__dirname + '/plugins/google/kubernetes/webDashboardDisabled.js'),
'defaultServiceAccount' : require(__dirname + '/plugins/google/kubernetes/defaultServiceAccount.js'),
'cosImageEnabled' : require(__dirname + '/plugins/google/kubernetes/cosImageEnabled.js'),
'autoNodeRepairEnabled' : require(__dirname + '/plugins/google/kubernetes/autoNodeRepairEnabled.js'),
'autoNodeUpgradesEnabled' : require(__dirname + '/plugins/google/kubernetes/autoNodeUpgradesEnabled.js'),
'networkPolicyEnabled' : require(__dirname + '/plugins/google/kubernetes/networkPolicyEnabled.js'),
'podSecurityPolicyEnabled' : require(__dirname + '/plugins/google/kubernetes/podSecurityPolicyEnabled.js'),
'privateClusterEnabled' : require(__dirname + '/plugins/google/kubernetes/privateClusterEnabled.js'),
'basicAuthenticationDisabled' : require(__dirname + '/plugins/google/kubernetes/basicAuthenticationDisabled.js'),
'dnsSecEnabled' : require(__dirname + '/plugins/google/dns/dnsSecEnabled.js'),
'dnsSecSigningAlgorithm' : require(__dirname + '/plugins/google/dns/dnsSecSigningAlgorithm.js'),
'auditLoggingEnabled' : require(__dirname + '/plugins/google/logging/auditLoggingEnabled.js'),
'projectOwnershipLogging' : require(__dirname + '/plugins/google/logging/projectOwnershipLogging.js'),
'storagePermissionsLogging' : require(__dirname + '/plugins/google/logging/storagePermissionsLogging.js'),
'sqlConfigurationLogging' : require(__dirname + '/plugins/google/logging/sqlConfigurationLogging.js'),
'auditConfigurationLogging' : require(__dirname + '/plugins/google/logging/auditConfigurationLogging.js'),
'customRoleLogging' : require(__dirname + '/plugins/google/logging/customRoleLogging.js'),
'vpcFirewallRuleLogging' : require(__dirname + '/plugins/google/logging/vpcFirewallRuleLogging.js'),
'vpcNetworkRouteLogging' : require(__dirname + '/plugins/google/logging/vpcNetworkRouteLogging.js'),
'vpcNetworkLogging' : require(__dirname + '/plugins/google/logging/vpcNetworkLogging.js'),
'logSinksEnabled' : require(__dirname + '/plugins/google/logging/logSinksEnabled.js'),
}
};