Overview of AWS and Mondoo
This page describes how you can use Mondoo to assess security configurations and risk for your infrastructure running in AWS.
Mondoo secures your AWS environment by finding vulnerabilities and misconfigurations across EC2 instances, EKS clusters, S3 buckets, IAM configurations, and more. You can continuously monitor your AWS accounts, scan during the build process, or run ad hoc assessments—whichever approach fits your workflow.
Continuously scan
Continuously evaluate the security of your AWS accounts and resources, such as EC2 instances, so that you always have an up-to-date view of your environment's security posture.
The Mondoo AWS Integration provides continuous scanning of your AWS accounts. Deploy the integration once and always get the latest security assessments for new accounts and resources.
Scan during build time
Build Secure AMIs with cnspec and HashiCorp Packer: Scan Linux and Windows HashiCorp Packer builds for vulnerabilities and security misconfigurations. Mondoo's plugin works with any of the supported Packer builders, including containers.
Scan during run time
Mondoo's client, cnspec, provides many ways to run ad hoc, agentless scans.
Overview
This page provides an overview of how you can use Mondoo to secure both your public cloud (AWS, Google Cloud, Azure), private cloud (VMware), Kubernetes, as well as SaaS services such as Microsoft 365.
Scan Continuously
Continuously monitor your AWS asset security with Mondoo. Choose between serverless scanning and Mondoo-hosted scanning.