Enriching AWS Security Hub Findings
check it out at https://aws.amazon.com/blogs/security/how-to-enrich-aws-security-hub-findings-with-account-metadata/
some thoughts in the ๐งต below ๐
@marknca tweeted at 24-Jan-2022, 15:40
Tweet 2/6 ๐ Next tweet ๐ Start
I’m a bit biased because I was involved in it’s early stages but it’s a sold key:value structure for reporting #security issues
๐งต
@marknca tweeted at 24-Jan-2022, 15:40
Tweet 3/6 ๐ Next tweet ๐ Start
๐งต
@marknca tweeted at 24-Jan-2022, 15:41
Tweet 4/6 ๐ Next tweet ๐ Start
the pattern in the blog post helps add that data to enrich the Finding
๐งต
@marknca tweeted at 24-Jan-2022, 15:41
Tweet 5/6 ๐ Next tweet ๐ Start
if I see Finding type X, query A, B, C, and add that data to the finding
this would help tune the pattern to your specific needs and trade offs
๐งต
@marknca tweeted at 24-Jan-2022, 15:41
Tweet 6/6 ๐ Next tweet ๐ Start
/๐งต
@marknca tweeted at 24-Jan-2022, 15:41