AWS Security Group Guard

Detect when a port becomes exposed via AWS Security Groups.

AWS Security Group Guard

​Deploy AWS Security Group Guard in Vectrix​

Description

AWS Security Group Guard helps prevent unauthorized access to internal services via exposed ports. It periodically queries AWS APIs for Security Group settings in your AWS account and will alert to your configured output upon any detected issues (see Alerts List).

Access & Configuration

Alerts

Port Exposed

Context: An AWS Security Group has been configured to be exposed to the internet.

Action: Navigate to the Security Group Console via the AWS Management Console and review Security Group configurations for settings that allow inbound traffic (AWS Documentation).

Sample Alert

Sample Alert: Port Exposed