diff --git a/README.md b/README.md index 3abc5b4..f0831b8 100644 --- a/README.md +++ b/README.md @@ -1,36 +1,7 @@ # AWS Terraform Module EC2 Bastion over SSM v2.0 -Module creates ec2 bastion host in private subnet (without Public IP-address) of VPC and connects it to System Manager and copy your ssh public key to .ssh/authorized_keys on the bastion ec2. +This module creates ec2 bastion host in private subnet (without Public IP-address) of VPC and connects it to System Manager and copy your ssh public key to .ssh/authorized_keys on the bastion ec2. Bastion host can be controlled by Session Manager documents. -## Security & Compliance [](https://bridgecrew.io/) - -Security scanning is graciously provided by Bridgecrew. - -| Benchmark | Description | -|--------|---------------| -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/general)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=INFRASTRUCTURE+SECURITY) | Infrastructure Security Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_aws)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+AWS+V1.2) | Center for Internet Security, AWS V1.2 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_azure)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+AZURE+V1.1) | Center for Internet Security, AZURE V1.1 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/pci)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=PCI-DSS+V3.2) | Payment Card Industry Data Security Standards V3.2 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/nist)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=NIST-800-53) | National Institute of Standards and Technology Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/iso)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=ISO27001) | Information Security Management System, ISO/IEC 27001 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/soc2)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=SOC2) | Service Organization Control 2 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_gcp)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+GCP+V1.1) | Center for Internet Security, GCP Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/hipaa)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=HIPAA) | Health Insurance Portability and Accountability Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/pci_dss_v321)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=PCI-DSS+V3.2.1) | PCI-DSS V3.2.1 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/fedramp_moderate)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=FEDRAMP+%28MODERATE%29) | FEDRAMP (MODERATE) Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_kubernetes)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+KUBERNETES+V1.5) | Center for Internet Security, KUBERNETES V1.5 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_aws_13)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+AWS+V1.3) | Center for Internet Security, AWS V1.3 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_azure_13)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+AZURE+V1.3) | Center for Internet Security, AZURE V1.3 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_docker_12)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+DOCKER+V1.2) | Center for Internet Security, Docker V1.2 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_eks_11)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+EKS+V1.1) | Center for Internet Security, EKS V1.1 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_gke_11)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+GKE+V1.1) | Center for Internet Security, GKE V1.1 Compliance | -| [![Infrastructure Tests](https://www.bridgecrew.cloud/badges/github/hazelops/terraform-aws-ec2-bastion/cis_kubernetes_16)](https://www.bridgecrew.cloud/link/badge?vcs=github&fullRepo=hazelops%2Fterraform-aws-ec2-bastion&benchmark=CIS+KUBERNETES+V1.6) | Center for Internet Security, KUBERNETES V1.6 Compliance | - - - - - ### Prerequisites EC2: - System Manager Agent must be installed and running (version 2.3.672.0 or more recent)