Logpresso Store

AWS Configuration Recorder Stopped

Detect when a user stops an AWS Configuration Recorder

AWS Console External Login

User logs in to the AWS console from an external location.

Terminate AWS EC2 Instance

AWS IAM User Created

Detects when a user creates a new AWS IAM account.

AWS Security Group Ingress Rule Allows Broad CIDR

Detects when a user adds an ingress rule to an AWS security group that allows inbound access from a Class B or larger IP range (/16 or less).

AWS Security Group Open to the World

Detects when a user adds an ingress rule to an AWS security group that allows internet inbound access.

Create AWS EC2 Instance