🚀 Announcing the Open Cloud Security Conference 🤘 Register Now For Free!

Sign up for Prowler Updates

Please enable JavaScript in your browser to complete this form.
Toni de la Fuente headshot
Toni de la Fuente // November 2, 2023

Scanner updated to Prowler 3.11.0 with new features

New features to highlight in this version:

🏷️ STS V2 Tokens (this will be in the SaaS immediately, so more regions may appear with findings)

  • Now Prowler will call Regional AWS STS endpoints to get session tokens valid in all AWS Regions.

See more in https://docs.prowler.cloud/en/latest/tutorials/aws/role-assumption/#sts-endpoint-region

New 9 checks for AWS! (this will be in the SaaS immediately, so more findings may appear)

  • New Account check account_maintain_different_contact_details_to_security_billing_and_operations
  • New CloudTrail check cloudtrail_multi_region_enabled_logging_management_events
  • New EC2 DataLifecycle Manager service and check dlm_ebs_snapshot_lifecycle_policy_exists
  • New EC2 EBS check ec2_ebs_volume_snapshots_exists
  • New DocumentDB service and check documentdb_instance_storage_encrypted
  • New Support check trustedadvisor_premium_support_plan_subscribed
  • New Neptune service and check neptune_uses_a_public_subnet
  • New Elasticache service and check elasticache_using_public_subnets
  • New IAM check iam_use_temporary_credentials

🔎 Ignore Findings from services not in actual use (this will be a roll out in the SaaS over the next weeks)

  • Prowler now allows you to ignore unused services findings, so you can reduce the number of findings in Prowler’s reports.
    prowler <provider> --ignore-unused-services

See more in https://docs.prowler.cloud/en/latest/tutorials/ignore-unused-services/

⚙️ New AWS Allowlist including AWS Control Tower resources (this will be nn the SaaS as a UI feature in a month)

  • New allowlist file that ensures that applies to all resources created by AWS Control Tower when setting up a landing zone:
    prowler aws --allowlist prowler/config/aws_allowlist.yaml

See more in https://docs.prowler.cloud/en/latest/tutorials/allowlist/#default-aws-allowlist

More details here https://github.com/prowler-cloud/prowler/releases/tag/3.11.0

Recent Articles

Screenshot at
June 4, 2025

Prowler’s State of Cloud Security Report 2025

https://youtu.be/S8nLoxgrc5o Rajiv Taori and Laura Franzese walk through the findings of the 2025 State of Cloud Security Report We've been in this industry long enough to know that survey data...

Screenshot at
June 3, 2025

Prowler Cloud: The Most Affordable, Effortless Way to Scale Cloud Security

Cloud security should be simple, cost-effective, and able to grow with your business. Prowler Cloud delivers all of this and more, offering the industry’s lowest total cost of ownership and an architecture...

AWS ISV A
June 2, 2025

Secure your entire cloud footprint in minutes with Prowler on AWS

Prowler is excited to announce that we have joined the AWS Independent Software Vendor (ISV) Accelerate Program. This partnership empowers us to deliver Prowler's multi-cloud security and compliance platform directly...