DEVHIDE
Login Or Sign up

Use AWS Config to find EC2 instances using Instance Metadata Service Version 1 (IMDSv1)

401 Views Asked by At

How do you find Amazon EC2 instances that are in a public subnet and are using Instance Metadata Service Version 1 (IMDSv1) using AWS Config or AWS Security Hub?

Thanks.

amazon-web-services aws-security-hub
Original Q&A
1

There are 1 best solutions below

0
On

figured it out:

SELECT
  resourceId,
  resourceName,
  resourceType,
  configuration.publicDnsName,
  configuration.instanceType,
  tags,
  availabilityZone
WHERE
  resourceType = 'AWS::EC2::Instance'
  AND configuration.publicDnsName LIKE 'ec2%'

or if you want to do it via the CLI

aws configservice select-aggregate-resource-config --expression "SELECT resourceId, resourceName, resourceType, configuration.publicDnsName, configuration.instanceType, tags, availabilityZone WHERE resourceType = 'AWS::EC2::Instance' AND configuration.publicDnsName LIKE 'ec2%'" --configuration-aggregator-name XX-XX-XX

Related Questions in AMAZON-WEB-SERVICES

Related Questions in AWS-SECURITY-HUB

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.