admin/nuclei-templates
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei-templates.git synced 2026-02-02 08:43:27 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
ba03e54063a94de8155adf476dc07e5b39bca341
nuclei-templates/cloud/aws/cloudformation/stack-notification-disabled.yaml
Prince Chaddha ea7a5969c8 Revert "chore: update TemplateMan 🤖" 
This reverts commit c31d574176.
2025-05-27 10:39:47 +08:00

59 lines
2.1 KiB
YAML
Raw Blame History

id: stack-notification-disabled
info:
name: CloudFormation Stack Notification - Disabled
author: DhiyaneshDK
severity: medium
description: |
Ensure that your Amazon CloudFormation stacks are using SNS topics to send notifications when important events occur.
impact: |
Disabling CloudFormation Stack Notifications can lead to reduced visibility into stack events and errors, delaying the detection of issues and hindering effective monitoring of changes and deployments in the cloud environment.
remediation: |
Enable CloudFormation Stack Notifications by configuring SNS (Simple Notification Service) topics for your CloudFormation stack. This will ensure real-time alerts on stack events, including updates, errors, and resource creation, providing better monitoring and visibility.
reference:
- https://www.trendmicro.com/cloudoneconformity-staging/knowledge-base/aws/CloudFormation/cloudformation-stack-notification.html
- http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-stack.html
tags: cloud,devops,aws,amazon,cloudformation,aws-cloud-config
variables:
region: "us-west-2"
flow: |
code(1)
for(let StackSummaries of iterate(template.stacksummaries)){
set("stacksummary", StackSummaries)
code(2)
}
self-contained: true
code:
- engine:
- sh
- bash
source: |
aws cloudformation list-stacks --region $region --stack-status-filter CREATE_COMPLETE --output json --query 'StackSummaries[*].StackName'
extractors:
- type: json
name: stacksummaries
internal: true
json:
- '.[]'
- engine:
- sh
- bash
source: |
aws cloudformation describe-stacks --region $region --stack-name $stacksummary --query 'Stacks[*].NotificationARNs[]'
matchers:
- type: word
words:
- '[]'
extractors:
- type: dsl
dsl:
- '"CloudFormation Stack Notification " + stacksummary + " is Disabled"'
# digest: 4a0a00473045022100bc25a76faa0c7e58a4a92eb2f19a3274305669771d48c016d498e89c11662c5e02203a98e65faea988f9df8e4a27ba1c90ebfe9fb35920fbdaaaa0d8e8231552a475:922c64590222798bb761d5b6d8e72950
Reference in New Issue View Git Blame Copy Permalink