Aws Associate Public Ip
Description
Detects AWS EC2 Launch Templates that are configured to automatically assign public IP addresses to EC2 instances. Automatic public IP assignment can expose instances directly to the internet, increasing the attack surface and potentially violating network security best practices.
Detection Strategy
• Scans all EC2 Launch Templates in the specified AWS region
• Checks each template version for NetworkInterfaces or InstanceConfiguration settings that enable automatic public IP assignment
• Reports a vulnerability when a Launch Template is configured with AssociatePublicIpAddress set to true
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.