Full Control Catalog
Auto-generated from the built-in control catalog. Do not edit manually. Run:
go run ./internal/tools/gencontroldocs
Total controls: 2673
Pack hash: 9780e8eb296e5788cf8389e4ba1126df8b6a35788da2af46453d89c4a61b6d80
Summary
| Severity | Count |
|---|---|
| critical | 275 |
| high | 1163 |
| info | 16 |
| low | 204 |
| medium | 1015 |
| Domain | Count |
|---|---|
| access | 9 |
| audit | 89 |
| capacity | 3 |
| detection | 134 |
| encryption | 113 |
| exposure | 1195 |
| governance | 578 |
| hygiene | 18 |
| identity | 426 |
| lifecycle | 31 |
| network | 32 |
| resilience | 33 |
| secrets | 4 |
| storage | 8 |
Browse by service
| Service | Controls |
|---|---|
| IAM | 184 |
| AZURE | 141 |
| OPENSEARCH | 132 |
| S3 | 124 |
| EKS | 115 |
| STEPFUNCTIONS | 113 |
| APIGATEWAY | 105 |
| COGNITO | 104 |
| EC2 | 98 |
| EVENTBRIDGE | 96 |
| VPC | 78 |
| ELB | 75 |
| M365 | 73 |
| GCP | 72 |
| CLOUDFRONT | 71 |
| K8S | 68 |
| RDS | 68 |
| CLOUDWATCH | 66 |
| LAMBDA | 58 |
| CONFIG | 50 |
| ROUTE53 | 50 |
| CLOUDTRAIL | 48 |
| ECS | 48 |
| KMS | 45 |
| AD | 40 |
| SNS | 37 |
| SQS | 37 |
| DYNAMODB | 35 |
| VSPHERE | 35 |
| SECRETS | 31 |
| CISCO | 30 |
| CLOUDFLARE | 29 |
| REDSHIFT | 26 |
| SAGEMAKER | 25 |
| BEDROCK | 24 |
| GITHUB | 22 |
| NEPTUNE | 19 |
| DOCUMENTDB | 18 |
| EFS | 13 |
| CODEBUILD | 12 |
| GLUE | 12 |
| EXPOSURE | 11 |
| NETFIREWALL | 11 |
| BACKUP | 10 |
| ECR | 10 |
| MSK | 9 |
| SSM | 8 |
| WAF | 8 |
| CLOUDFORMATION | 7 |
| GCS | 7 |
| DMS | 6 |
| GUARDDUTY | 6 |
| EMR | 5 |
| ELASTICACHE | 4 |
| SECRETSMANAGER | 4 |
| ACM | 3 |
| AUTOSCALING | 3 |
| DNS | 3 |
| SECRET | 3 |
| SECURITYHUB | 3 |
| APIGW2 | 2 |
| BEANSTALK | 2 |
| CODECOMMIT | 2 |
| GHOST | 2 |
| KINESIS | 2 |
| LIGHTSAIL | 2 |
| APPSTREAM | 1 |
| ATHENA | 1 |
| CFN | 1 |
| GUARDRAIL | 1 |
| INSPECTOR | 1 |
| LIFECYCLE | 1 |
| MACIE | 1 |
| META | 1 |
| MQ | 1 |
| ORG | 1 |
| RAM | 1 |
| SHIELD | 1 |
| WORKSPACES | 1 |