Amazon Web Services (AWS) Compliance File Reference

The Amazon Web Service (AWS) audit includes checks for running instances, network ACLs, firewall configurations, account attributes, user listing, and more. To audit your AWS account, you need a valid AWS access and secret key pair for an IAM user account that has been granted permissions within the AWS managed "ReadOnlyAccess" policy. For more information, see IAM Policy to Allow AWS Compliance Scanning.

Because AWS is a web-based service, the AWS audit does not have any designated targets, unlike a typical Nessus audit.

This section includes the following information:

• Audit File Syntax
• AWS Keywords
• AWS Debugging
• Known Good Auditing
• IAM Policy to Allow AWS Compliance Scanning