GCP Misconfigurations
VPC Audit
GCP Misconfigurations
VPC Audit
Checks performed
- Default VPC Should Not Be Used
- Interfaces With Default VPC
- Firewall Rules Should Be Minimum
- Private Access Should Be Enabled For Subnets
- VNC Server Port Should Not Be Open
- VNC Client Port Should Not Be Open
- Telnet Port Should Not Be Open
- SSH Port Should Not Be Open
- SQL Server Port Should Not Be Open
- SMTP Port Should Not Be Open
- Windows SMB Port Should Not Be Open
- RPC Port Should Not Be Open
- RDP Port Should Not Be Open
- PostgreSQL Port Should Not Be Open
- Oracle Port Should Not Be Open
- NetBIOS Port Should Not Be Open
- MySQL Port Should Not Be Open
- Kibana Port Should Not Be Open
- Hadoop HDFS Port Should Not Be Open
- Hadoop HDFS NameNode Metadata Service Port Should Not Be Open
- FTP Port Should Not Be Open
- DNS Port Should Not Be Open
- CIFS Port Should Not Be Open
- All Ports Should Not Be Open To Public
- VPC Flow Logs Should Be Enabled
- DNSSEC Should Be Enabled For Cloud DNS
- Legacy Networks Should Not Be Used
- RSASHA1 Should Not Be Used For Key Signing
- RSASHA1 Should Not Be Used For Zone Signing
- Load Balancers Should Not Allow Weak Cypher Suites