Aws Dns Query Logging Disabled
Description
Detects AWS Route 53 public hosted zones that do not have DNS query logging enabled. DNS query logging is important for security monitoring and auditing as it helps track DNS queries made to your domains, which is crucial for detecting potential DNS-based attacks and suspicious activities.
Detection Strategy
• Checks if the hosted zone is public (not a private zone)
• Verifies if any query logging configurations exist for the hosted zone
• Reports a vulnerability if a public hosted zone has no query logging configurations enabled
• Only evaluates Route 53 hosted zones in the specified AWS region
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.