Checks/Aws/Test-Ec2SecuritygroupAllowIngressFromInternetToAllPorts.ps1
|
function Test-Ec2SecuritygroupAllowIngressFromInternetToAllPorts { <# .SYNOPSIS Security group does not have all ports open to the Internet .DESCRIPTION **EC2 security groups** with **inbound rules** permitting Internet sources (`0.0.0.0/0`, `::/0`) to `all ports` across any protocol .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: ec2_securitygroup_allow_ingress_from_internet_to_all_ports [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check ec2_securitygroup_allow_ingress_from_internet_to_all_ports for reference.', 'N/A', 'ec2 Resources') } |