Skip to content

Commit

Permalink
feat: enable GuardDuty in all regions
Browse files Browse the repository at this point in the history
  • Loading branch information
Takashi Nozawa committed Feb 12, 2018
1 parent 3f1a9c0 commit 00969b6
Show file tree
Hide file tree
Showing 3 changed files with 123 additions and 0 deletions.
1 change: 1 addition & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,7 @@ Most configurations are based on [CIS Amazon web Services Foundations].
- Set up CloudWatch alarms to notify you when critical changes happen in your AWS account.
- Enable VPC Flow Logs with the default VPC in all regions.
- Remove all rules associated with default route tables, default network ACLs and default security groups in the default VPC in all regions.
- Enable GuardDuty in all regions.

## Usage

Expand Down
119 changes: 119 additions & 0 deletions guardduty_baselines.tf
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,119 @@
module "guardduty_baseline_ap-northeast-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.ap-northeast-1"
}
}

module "guardduty_baseline_ap-northeast-2" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.ap-northeast-2"
}
}

module "guardduty_baseline_ap-south-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.ap-south-1"
}
}

module "guardduty_baseline_ap-southeast-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.ap-southeast-1"
}
}

module "guardduty_baseline_ap-southeast-2" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.ap-southeast-2"
}
}

module "guardduty_baseline_ca-central-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.ca-central-1"
}
}

module "guardduty_baseline_eu-central-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.eu-central-1"
}
}

module "guardduty_baseline_eu-west-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.eu-west-1"
}
}

module "guardduty_baseline_eu-west-2" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.eu-west-2"
}
}

module "guardduty_baseline_eu-west-3" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.eu-west-3"
}
}

module "guardduty_baseline_sa-east-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.sa-east-1"
}
}

module "guardduty_baseline_us-east-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.us-east-1"
}
}

module "guardduty_baseline_us-east-2" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.us-east-2"
}
}

module "guardduty_baseline_us-west-1" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.us-west-1"
}
}

module "guardduty_baseline_us-west-2" {
source = "./modules/guardduty-baseline"

providers = {
aws = "aws.us-west-2"
}
}
3 changes: 3 additions & 0 deletions modules/guardduty-baseline/main.tf
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
resource "aws_guardduty_detector" "default" {
enable = true
}

0 comments on commit 00969b6

Please sign in to comment.