Usecase Universe

A collective of use cases for DevOps teams

Browse a variety of 300+ predefined templates to automate all your AWS actions

Create Template
Solutions
All Categories

CloudTrail

24 Times Used
22 MAY 2019
Ensure CloudTrail trails are integrated with CloudWatch Logs
CIS-AWS
CloudTrail

Checks if CloudTrail trails are integrated with CloudWatch Logs

Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL)
CIS-AWS
CloudTrail

Checks if a log metric filter and alarm exist for changes to Network Access Control Lists (NACL)

Ensure a log metric filter and alarm exist for usage of "root" account
CIS-AWS
CloudTrail

Checks if a log metric filter and alarm exist for usage of "root" account

Ensure CloudTrail is enabled in all regions
CIS-AWS
CloudTrail

Checks if CloudTrail is enabled in all regions

Ensure a log metric filter and alarm exist for CloudTrail configuration changes
CIS-AWS
CloudTrail

Checks if a log metric filter and alarm exist for CloudTrail configuration changes

Ensure a log metric filter and alarm exist for AWS Management Console authentication failures
CIS-AWS
CloudTrail

Checks if a log metric filter and alarm exist for AWS Management Console authentication failures

Ensure CloudTrail logs are encrypted at rest using KMS CMKs - fix
CloudTrail
Security

Ensure CloudTrail logs are encrypted at rest using KMS CMKs - fix

Console login report
Security
Interesting Events
CloudTrail

Sends a report of all the console logins that happened in your aws account

Ensure a log metric filter and alarm exist for disabling or scheduled deletion of customer created CMKs
CloudTrail
CIS-AWS

Checks if a log metric filter and alarm exist for disabling or scheduled deletion of customer created CMKs

Ensure a log metric filter and alarm exist for Management Console sign-in without MFA
CloudTrail
CloudWatch
CIS-AWS

Checks for log metric filter and Management Console sign-in without MFA alarm in your aws account

Ensure a log metric filter and alarm exist for changes to network gateways
CloudTrail
CIS-AWS

Checks if a log metric filter and alarm exist for changes to network gateways

Ensure CloudTrail trails are integrated with CloudWatch Logs
CIS-AWS
CloudTrail

Checks if CloudTrail trails are integrated with CloudWatch Logs

Ensure a log metric filter and alarm exist for security group changes
CIS-AWS
CloudTrail

checks if a log metric filter and alarm exist for security group changes

Ensure a log metric filter and alarm exist for AWS Config configuration changes
CIS-AWS
CloudTrail
CIS-AWS

checks if a log metric filter and alarm exist for AWS Config configuration changes

Ensure a log metric filter and alarm exist for route table changes
CIS-AWS
CloudTrail

Checks if a log metric filter and alarm exist for route table changes