Aws Unencrypted Amis
Description
Identifies AWS EC2 Amazon Machine Images (AMIs) that are not encrypted. Unencrypted AMIs pose a security risk as they could expose sensitive system and application data stored in the image volumes.
Detection Strategy
• Scans all AMIs owned by the current AWS account
• Examines each block device mapping in the AMI to check if EBS volumes are encrypted
• Reports a vulnerability when any block device in the AMI has encryption disabled or not set
• Identifies the specific unencrypted block devices within each AMI by their mapping index
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.