Zeus AWS Auditing & Hardening Tool

Zeus is a powerful tool designed for implementing best hardening practices in AWS EC2, S3, CloudTrail, CloudWatch, and KMS.

It checks security settings based on the profiles created by the user and adjusts them to recommended settings derived from the CIS AWS Benchmark, upon the user's request. Currently, this process only includes the Logging mechanism. Identity and Access Management: - Avoid using the 'root' account. - Ensure that multi-factor authentication (MFA) is enabled for all IAM users who have a console password. - Ensure that credentials that have been unused for 90 days or longer are disabled. - Ensure that access keys are rotated every 90 days or sooner. - Ensure that the IAM password policy requires at least one uppercase letter. - Ensure that the IAM password policy requires at least one lowercase letter. - Ensure that the IAM password policy requires at least one symbol. - Ensure that the IAM password policy requires at least one number. - Ensure that the IAM password policy mandates a minimum length of 14 characters or more. - Ensure that no access key exists for the root account. - Ensure that MFA is enabled for the 'root' account. - Ensure that security questions are registered in the AWS account. - Ensure that IAM policies are only attached to groups or roles. - Enable detailed billing. - Maintain current contact information.