Sign up for Prowler Updates

Please enable JavaScript in your browser to complete this form.
Toni de la Fuente headshot
Toni de la Fuente // May 8, 2023

New checks and engine updated to v3.4

ProwlerPro is now using Prowler Open Source as scanner engine v3.4 and new checks are added.

New services covered like Organizations best practices, SSM Incidents, Resource Explorer, Backup, additional checks for CloudTrail, ECR scan on push check updated, GuardDuty, VPC best practices, IAM. Now iam_policy_no_administrative_privileges has been renamed to iam_customer_unattached_policy_no_administrative_privileges and the following new important IAM checks:

  • iam_aws_attached_policy_no_administrative_privileges: Ensure IAM AWS-Managed policies that allow full “:” administrative privileges are not attached – iam [high]
  • iam_customer_attached_policy_no_administrative_privileges: Ensure IAM Customer-Managed policies that allow full “:” administrative privileges are not attached – iam [high]
  • iam_customer_unattached_policy_no_administrative_privileges: Ensure IAM policies that allow full “:” administrative privileges are not created – iam [low]

Recent Articles

Screen Shot at
February 12, 2025

What’s New in Prowler 5.3

We’ve been working hard to enhance Prowler across the board—improving visibility, expanding provider support, and making cloud security management more efficient. This release brings real-time scan visibility, Microsoft365 support, UI...

Screen Shot at
February 10, 2025

Getting Started with Prowler SDK-Core

Join us for a virtual Learning Lab February 20th @ 9:00 AM – 10:00 AM PT On February 20th, join Prowler Engineers Adrián Peña and Pepe Fagoaga for an in-depth...

Prowler API Learning Lab
February 3, 2025

Getting Started with Prowler API

Join us for a virtual Learning Lab February 6 @ 9:00 AM – 10:00 AM PT Modern cloud security shouldn’t feel like deciphering a black box—it should be transparent, flexible,...