Plugin Title Excessive Security Groups
Category Network Security Groups
Description Determines if there are an excessive number of security groups in the account
More Info Keeping the number of security groups to a minimum helps reduce the attack surface of an account. Rather than creating new groups with the same rules for each project, common rules should be grouped under the same security groups. For example, instead of adding port 22 from a known IP to every group, create a single "SSH" security group which can be used on multiple instances.
AWS Link
Recommended Action Limit the number of security groups to prevent accidental authorizations.

Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now