Aws Kafka Cluster Logging Disabled
Description
Detects Amazon MSK (Managed Streaming for Apache Kafka) clusters that have logging disabled. Running Kafka clusters without logging reduces visibility into cluster operations, broker logs, and audit events, making it difficult to monitor for security incidents and troubleshoot issues.
Detection Strategy
• Checks all MSK clusters in the specified AWS region
• Examines the LoggingInfo configuration for each cluster under the Provisioned settings
• Reports a vulnerability if a cluster's LoggingInfo setting is empty or missing
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.