Aws Virtual Gateway Access Logging Disabled
Description
Detects AWS App Mesh Virtual Gateways that have access logging disabled. Access logging is crucial for monitoring and auditing network traffic patterns through the virtual gateway, and its absence can impair security visibility and incident investigation capabilities.
Detection Strategy
• Scans all Virtual Gateways in AWS App Mesh within the specified region
• Checks if access logging configuration is missing or disabled for each Virtual Gateway
• Reports a vulnerability when a Virtual Gateway is found without active access logging
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.