February was another busy month. Internally, as we work to improve our processes, we are still committed to maintaining our frequent release cadence. Our releases, both minor and major, ensure that customers have access to valuable improvements, features, expanded support capabilities, and bug fixes throughout the month. The releases throughout February 2021 were no different and included improvements to our Infrastructure as Code (IaC) feature and expanded support for Azure Organizations, allowing users to add multiple cloud accounts. We also released several new Insights, over 10 new filters, new-and-improved Bot actions, and numerous bug fixes.
Infrastructure as Code (IaC) performance improvements
As part of our 21.2 release, there was a substantially improved performance for IaC scan times. We expect customers to see up to a 500% reduction in overall scan times. In addition, improvements include the separation of the data schema, allowing simulation scans to avoid impact by table locks and row-level operations that can sometimes create delays.
Support for Azure organizations
To expand on our support for adding multiple cloud accounts (including AWS and GCP) in February, we expanded support for adding multiple Azure clouds/accounts. This capability takes advantage of the Azure Management Groups functionality and will dramatically improve the onboarding experience for new customers using Azure or existing customers expanding their cloud footprint to include Azure. Read more about it here.
New Insights were launched in February spanning AWS, Azure, and GCP. At the time of this writing, the DivvyCloud platform includes over 500 Insights to help you query the data we ingest across your entire cloud footprint for more meaningful context. Check out the Insight names and associated descriptions below:
- Airflow Environment Allows Public Web Server Access: Identifies Airflow Environments by their access mode set to public. This applies to AWS (not China or GovCloud).
- Airflow Environment Without Proper Logging Configuration: Identifies Airflow Environments based on their logging configuration. This applies to AWS (not China or GovCloud).
- File Share Has Allowed Clients Set To 0.0.0.0/0: Matches NFS File Shares by the client list source network set to 0.0.0.0/0. This applies to AWS, AWS China, and AWS GovCloud.
- Kubernetes Cluster Engine Logging Disabled: Identifies Kubernetes cluster engines with logging disabled. Applies to AWS, AWS China, and AWS GovCloud.
- Storage Account not using Customer Master Key (CMK): Matches Storage Accounts that are encrypted using provider default keys. This applies to Azure, Azure China, and Azure Gov.
- NAT Gateway Without Logging Enabled: Matches NAT Gateways that are not logging. This applies to GCP.
New supported resources
February’s releases also included support for nine new resources across AWS, Azure, and GCP. Details on those newly supported releases are included below. Check out the full release notes or product documentation on Resources for information on associated filters, permissions, and other configuration details.
- Added visibility and tag lifecycle support for AWS DataSync Tasks.
- Added support for AWS Storage Gateways, specifically File System (NFS) or Server Message Block (SMB) File Gateway Share.
- Added visibility, tag, and EDH support for AWS Managed Airflow Environment for Apache Airflow.
- Added visibility and Infrastructure-as-Code (IAC) support for Azure Dedicated Hosts.
- Added visibility and lifecycle support for Azure Search Service, Azure’s cloud search service that provides developers APIs and tools for building content in web, mobile, and enterprise applications.
- Added visibility and lifecycle support for GCP AI Notebook Instances (GCP AI Platform Notebook).
- Added visibility and IaC support for GCP Cloud NAT.
- Added visibility and IaC support for Azure Data Factory.
- Added visibility and IaC support for API Gateway Domains.
You can check out the release notes for all releases across the month of February, with details available here and here.
DivvyCloud by Rapid7 protects your cloud and container environments from misconfigurations, policy violations, threats, and IAM challenges. With automated, real-time remediation, DivvyCloud by Rapid7 customers achieve continuous security and compliance, and can fully realize the benefits of cloud and container technology.