Continuously audit and monitor AWS Config Recorder configurations and enforce security compliance as code with Panther.
AWS Config provides a detailed view of the configuration of AWS resources in your AWS account. The AWS Config Recorder resource describes the AWS resource types for which AWS Config records configuration changes. Use Panther to track real-time changes to your Confic Recorder resources to ensure configurations meet your business requirements for security and compliance.
Monitoring Config Recorder is critical for understanding the history of AWS resource configuration changes and detecting suspicious activity. Use Panther’s built in policies for continuous monitoring of Config Recorder resources, or write your own detections in Python to fit your internal business use cases.
Common security use cases for Config recorder with Panther include:
The integration is simple and fast:
Use Panther to search all Config Recorder resources in an account by name, view their compliance status, associated policies, and configured remediations. Learn more about using Panther to analyze your AWS logs for security insights.
Audit changes to AWS Certificate manager
Audit changes to the security group in your EC2 instances.
Continuously audit your EC2 Volume configurations
Capture traffic activity and monitor actual network traffic flows.
Audit changes to AWS Application Load Balancer
Detect and alert on unauthorized access to your S3 buckets.
Track real-time changes to your WAF ACLs
Track real-time changes to your AWS Lambda