기본 CSPM에서 다중 클라우드에 지원되는 리소스 및 서비스 유형
이 페이지에는 클라우드용 Defender의 기본 CSPM(클라우드 보안 태세 관리) 계층에서 AWS(Amazon Web Services) 및 GCP(Google Cloud Platform)에 대해 지원되는 리소스 및 서비스 유형이 나와 있습니다.
AWS에서 지원되는 리소스 종류
| 공급자 네임스페이스 |
리소스 종류 이름 |
| AccessAnalyzer |
AnalyzerSummary |
| ApiGateway |
단계 |
| AppSync |
GraphqlApi |
| ApplicationAutoScaling |
ScalableTarget |
| AutoScaling |
AutoScalingGroup |
| AWS |
어카운트 |
| AWS |
AccountInRegion |
| CertificateManager |
CertificateTags |
| CertificateManager |
CertificateDetail |
| CertificateManager |
CertificateSummary |
| CloudFormation |
StackSummary |
| CloudFormation |
StackTemplate |
| CloudFormation |
StackInstanceSummary |
| CloudFormation |
Stack |
| CloudFormation |
StackResourceSummary |
| CloudFront |
DistributionConfig |
| CloudFront |
DistributionSummary |
| CloudFront |
DistributionTags |
| CloudTrail |
EventSelector |
| CloudTrail |
Trail |
| CloudTrail |
TrailStatus |
| CloudTrail |
TrailTags |
| CloudWatch |
MetricAlarm |
| CloudWatch |
MetricAlarmTags |
| CloudWatchLogs |
LogGroup |
| CloudWatchLogs |
MetricFilter |
| CodeBuild |
프로젝트 |
| CodeBuild |
ProjectName |
| CodeBuild |
SourceCredentialsInfo |
| ConfigService |
ConfigurationRecorder |
| ConfigService |
ConfigurationRecorderStatus |
| ConfigService |
DeliveryChannel |
| DAX |
클러스터 |
| DAX |
ClusterTags |
| DatabaseMigrationService |
ReplicationInstance |
| DynamoDB |
ContinuousBackupsDescription |
| DynamoDB |
TableDescription |
| DynamoDB |
TableTags |
| DynamoDB |
TableName |
| EC2 |
스냅샷 |
| EC2 |
서브넷 |
| EC2 |
볼륨 |
| EC2 |
VPC |
| EC2 |
VpcEndpoint |
| EC2 |
VpcPeeringConnection |
| EC2 |
인스턴스 |
| EC2 |
AccountAttribute |
| EC2 |
주소 |
| EC2 |
CreateVolumePermission |
| EC2 |
EbsEncryptionByDefault |
| EC2 |
FlowLog |
| EC2 |
이미지 |
| EC2 |
InstanceStatus |
| EC2 |
InstanceTypeInfo |
| EC2 |
NetworkAcl |
| EC2 |
NetworkInterface |
| EC2 |
지역 |
| EC2 |
예약 |
| EC2 |
RouteTable |
| EC2 |
SecurityGroup |
| ECR |
이미지 |
| ECR |
리포지토리 |
| ECR |
RepositoryPolicy |
| ECS |
TaskDefinition |
| ECS |
ServiceArn |
| ECS |
서비스 |
| ECS |
ClusterArn |
| ECS |
TaskDefinitionTags |
| ECS |
TaskDefinitionArn |
| EFS |
FileSystemDescription |
| EFS |
MountTargetDescription |
| EKS |
클러스터 |
| EKS |
Nodegroup |
| EKS |
NodegroupName |
| EKS |
ClusterName |
| EMR |
클러스터 |
| ElasticBeanstalk |
ConfigurationSettingsDescription |
| ElasticBeanstalk |
EnvironmentDescription |
| ElasticLoadBalancing |
LoadBalancerTags |
| ElasticLoadBalancing |
LoadBalancer |
| ElasticLoadBalancing |
LoadBalancerAttributes |
| ElasticLoadBalancing |
LoadBalancerPolicy |
| ElasticLoadBalancingV2 |
LoadBalancerTags |
| ElasticLoadBalancingV2 |
규칙 |
| ElasticLoadBalancingV2 |
TargetGroup |
| ElasticLoadBalancingV2 |
TargetHealthDescription |
| ElasticLoadBalancingV2 |
LoadBalancer |
| ElasticLoadBalancingV2 |
listener |
| ElasticLoadBalancingV2 |
LoadBalancerAttribute |
| Elasticsearch |
DomainInfo |
| Elasticsearch |
DomainStatus |
| Elasticsearch |
DomainTags |
| GuardDuty |
DetectorId |
| Iam |
AccountAlias |
| Iam |
AttachedPolicyType |
| Iam |
CredentialReport |
| Iam |
그룹 |
| Iam |
InstanceProfile |
| Iam |
MFADevice |
| Iam |
PasswordPolicy |
| Iam |
ServerCertificateMetadata |
| Iam |
SummaryMap |
| Iam |
사용자 |
| Iam |
UserPolicies |
| Iam |
VirtualMFADevice |
| Iam |
ManagedPolicy |
| Iam |
ManagedPolicy |
| Iam |
AccessKeyLastUsed |
| Iam |
AccessKeyMetadata |
| Iam |
PolicyVersion |
| Iam |
PolicyVersion |
| 내부 |
Iam_EntitiesForPolicy |
| 내부 |
Iam_EntitiesForPolicy |
| 내부 |
AwsSecurityConnector |
| KMS |
KeyPolicyName |
| KMS |
KeyRotationStatus |
| KMS |
KeyTags |
| KMS |
KeyPolicy |
| KMS |
KeyMetadata |
| KMS |
KeyListEntry |
| KMS |
AliasListEntry |
| Lambda |
FunctionCodeLocation |
| Lambda |
FunctionConfiguration |
| Lambda |
FunctionPolicy |
| Lambda |
FunctionTags |
| Macie2 |
JobSummary |
| Macie2 |
MacieStatus |
| NetworkFirewall |
방화벽 |
| NetworkFirewall |
FirewallMetadata |
| NetworkFirewall |
FirewallPolicy |
| NetworkFirewall |
FirewallPolicyMetadata |
| NetworkFirewall |
RuleGroup |
| NetworkFirewall |
RuleGroupMetadata |
| RDS |
ExportTask |
| RDS |
DBClusterSnapshot |
| RDS |
DBSnapshot |
| RDS |
DBSnapshotAttributesResult |
| RDS |
EventSubscription |
| RDS |
DBCluster |
| RDS |
DBInstance |
| RDS |
DBClusterSnapshotAttributesResult |
| RedShift |
LoggingStatus |
| RedShift |
매개 변수 |
| Redshift |
클러스터 |
| Route53 |
HostedZone |
| Route53 |
ResourceRecordSet |
| Route53Domains |
DomainSummary |
| S3 |
S3Region |
| S3 |
S3BucketTags |
| S3 |
S3Bucket |
| S3 |
BucketPolicy |
| S3 |
BucketEncryption |
| S3 |
BucketPublicAccessBlockConfiguration |
| S3 |
BucketVersioning |
| S3 |
LifecycleConfiguration |
| S3 |
PolicyStatus |
| S3 |
ReplicationConfiguration |
| S3 |
S3AccessControlList |
| S3 |
S3BucketLoggingConfig |
| S3Control |
PublicAccessBlockConfiguration |
| SNS |
구독 |
| SNS |
항목 |
| SNS |
TopicAttributes |
| SNS |
TopicTags |
| SQS |
Queue |
| SQS |
QueueAttributes |
| SQS |
QueueTags |
| SageMaker |
NotebookInstanceSummary |
| SageMaker |
DescribeNotebookInstanceTags |
| SageMaker |
DescribeNotebookInstanceResponse |
| SecretsManager |
SecretResourcePolicy |
| SecretsManager |
SecretListEntry |
| SecretsManager |
DescribeSecretResponse |
| SimpleSystemsManagement |
ParameterMetadata |
| SimpleSystemsManagement |
ParameterTags |
| SimpleSystemsManagement |
ResourceComplianceSummary |
| SimpleSystemsManagement |
InstanceInformation |
| WAF |
LoggingConfiguration |
| WAF |
WebACL |
| WAF |
WebACLSummary |
| WAFV2 |
ApplicationLoadBalancerForWebACL |
| WAFV2 |
WebACLSummary |
GCP에서 지원되는 리소스 종류
| 공급자 네임스페이스 |
리소스 종류 이름 |
| ApiKeys |
키 |
| ArtifactRegistry |
이미지 |
| ArtifactRegistry |
리포지토리 |
| ArtifactRegistry |
RepositoryPolicy |
| Bigquery |
데이터 세트 |
| Bigquery |
DatasetData |
| Bigquery |
테이블 |
| Bigquery |
TablePolicy |
| Bigquery |
TablesData |
| CloudKMS |
CryptoKey |
| CloudKMS |
CryptoKeyPolicy |
| CloudKMS |
KeyRing |
| CloudKMS |
KeyRingPolicy |
| CloudResourceManager |
프로젝트 |
| CloudResourceManager |
상위 항목 |
| CloudResourceManager |
AncestorPolicy |
| CloudResourceManager |
EffectiveOrgPolicy |
| CloudResourceManager |
폴더 |
| CloudResourceManager |
FolderPolicy |
| CloudResourceManager |
조직 |
| CloudResourceManager |
조직 정책 |
| CloudResourceManager |
정책 |
| Compute |
인스턴스 |
| Compute |
BackendService |
| Compute |
BackendService |
| Compute |
디스크 |
| Compute |
EffectiveFirewalls |
| Compute |
방화벽 |
| Compute |
ForwardingRule |
| Compute |
GlobalForwardingRule |
| Compute |
InstanceGroup |
| Compute |
InstanceGroupInstance |
| Compute |
InstanceGroupManager |
| Compute |
InstanceGroupManager |
| Compute |
InstanceTemplate |
| Compute |
MachineType |
| Compute |
ManagedInstance |
| Compute |
ManagedInstance |
| Compute |
네트워크 |
| Compute |
NetworkEffectiveFirewalls |
| Compute |
프로젝트 |
| Compute |
SslPolicy |
| Compute |
Subnetwork |
| Compute |
TargetHttpProxy |
| Compute |
TargetHttpsProxy |
| Compute |
TargetPool |
| Compute |
TargetSslProxy |
| Compute |
TargetTcpProxy |
| Compute |
UrlMap |
| 컨테이너 |
클러스터 |
| Dns |
ManagedZone |
| Dns |
정책 |
| IAM
|
OrganizationRole |
| IAM
|
ProjectRole |
| IAM
|
역할 |
| IAM
|
ServiceAccount |
| IAM
|
ServiceAccountKey |
| 내부 |
GcpSecurityConnector |
| 로깅 |
AncestorLogSink |
| 로깅 |
LogEntry |
| 로깅 |
LogMetric |
| 로깅 |
LogSink |
| 모니터링 |
AlertPolicy |
| OsConfig |
OSPolicyAssignment |
| OsConfig |
OSPolicyAssignmentReport |
| SQLAdmin |
DatabaseInstance |
| SecretManager |
암호 |
| SecretManager |
SecretPolicy |
| 스토리지 |
버킷 |
| 스토리지 |
BucketPolicy |
자세히 알아보기