Aws Persistent Logs
Description
Detects AWS Elastic Beanstalk environments that have disabled persistent logging features. When persistent logging is disabled, it prevents the retention and monitoring of application logs, which poses security and compliance risks by limiting audit capabilities and incident investigation.
Detection Strategy
• Scans all Elastic Beanstalk environments in the specified AWS region
• Checks if both LogPublicationControl and StreamLogs configuration options are set to 'false'
• Reports a vulnerability when both logging features are disabled for an environment
Severity v4.0
0.6
Low
Method ID
CSPM-4I4IP
Technique
CSPM
Target
AWS
Technology
ELASTIC_BEANSTALK
CWE ID(s)
CWE-778Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.