https://github.com/attackiq/attackiq.github.io
AttackIQ Github Domain
https://github.com/attackiq/attackiq.github.io
Last synced: 4 months ago
JSON representation
AttackIQ Github Domain
- Host: GitHub
- URL: https://github.com/attackiq/attackiq.github.io
- Owner: AttackIQ
- Created: 2019-01-24T09:19:27.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2020-02-05T23:33:32.000Z (over 6 years ago)
- Last Synced: 2025-03-14T15:28:59.257Z (over 1 year ago)
- Size: 2.42 MB
- Stars: 4
- Watchers: 4
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# AttackIQ Platform

Don't have AttackIQ? [Learn more](https://go.attackiq.com/BD-AWS-Security-Hub_LP.html)
## Overview
The AttackIQ Platform provides the capability to send notifications for scheduled assessment results to AWS Security Hub. With this facility, you can set a minimum prevention rate for a scheduled assessment. When the prevention percentage falls below this threshold, the AttackIQ Platform will send a notification to your Security Hub Console conveying the assessment results.
This guide will show you how to configure the AWS Security Notification facility for your scheduled assessments.
## Configuration
To configure AWS Security Hub notifications, follow this procedure:
- Open your AttackIQ Platform UI then click on the assessment you want to schedule.

- Click on the Scheduled menu item, then schedule your assessment. The details of how this is done will not be covered in this guide.
- Click on the Notification menu item.
- Click on the Global Config button.

- Click on the AWS Configure button.

- Enter your AWS Account ID
- Enter your AWS Region
- Click on the TEST CONNECTION button to send a test notification.
- Click on the Update button to save the notification configuration fo your scheduled assessment.

- Click on the AWS STATUS switch to enable AWS notifications.

- Click on the AWS toggle switch to enable notifications for your assessment.

- Click on the SET THRESHOLD button.
- Set the desired threshold with the slider control.
- Click on Save button.

## AWS Security Hub Console
To see your Security Hub notifications:
1. Open your **AWS Management Console**
1. Click on **Security Hub** in the **Security, Identity, & Compliance** section.
1. Click on **Findings** in the menu on the left.
1. Click on the empty part of the search box.
1. Select **Severity label** from the menu.
1. Enter **CRITICAL**.
1. Click on **Apply**.
You should get findings that look like the following.

In this example, both a test notification and a scheduled assessment notification are shown.