Prowler

Sign up for Prowler Updates

Please enable JavaScript in your browser to complete this form.
Toni de la Fuente headshot
Toni de la Fuente // May 8, 2023

New checks and engine updated to v3.4

ProwlerPro is now using Prowler Open Source as scanner engine v3.4 and new checks are added.

New services covered like Organizations best practices, SSM Incidents, Resource Explorer, Backup, additional checks for CloudTrail, ECR scan on push check updated, GuardDuty, VPC best practices, IAM. Now iam_policy_no_administrative_privileges has been renamed to iam_customer_unattached_policy_no_administrative_privileges and the following new important IAM checks:

  • iam_aws_attached_policy_no_administrative_privileges: Ensure IAM AWS-Managed policies that allow full “:” administrative privileges are not attached – iam [high]
  • iam_customer_attached_policy_no_administrative_privileges: Ensure IAM Customer-Managed policies that allow full “:” administrative privileges are not attached – iam [high]
  • iam_customer_unattached_policy_no_administrative_privileges: Ensure IAM policies that allow full “:” administrative privileges are not created – iam [low]

Recent Articles

www prowler
December 11, 2024

Mastering Multi-Cloud Security with Prowler 5

Managing security across multiple cloud platforms shouldn’t feel like a never-ending headache. That’s where Prowler 5 comes in. With its unified, open-source approach, Prowler 5 makes securing AWS, Azure, GCP,...

Grey Minimalist Tips Blog Banner
December 4, 2024

Seamless Security for Every Cloud with Prowler 5

TL;DR: Prowler 5 is now available. Sign up today to use Prowler to secure every cloud, in the SaaS or the CLI.

Meet Prowler at AWS re:Invent in LAS VEGAS
November 27, 2024

Prowler is Heading to AWS re:Invent in Las Vegas! 🚀

We’re excited to announce that Prowler will be at AWS re:Invent 2024 next week in Las Vegas. Whether you’re passionate about cloud technology, a security expert, or simply love exploring...