Simple Storage Service (S3)
AWS S3
Overview
AWS S3 integration - regscale aws sync_s3 - evaluates storage security controls (SC-13, SC-28, AC-3, AC-6, AU-2, AU-9, CP-9).
Command Syntax
regscale aws sync_s3 [OPTIONS]
Basic Usage
# Sync all S3 buckets with evidence
regscale aws sync_s3 --regscale-id 123 --create-evidence
# Filter by bucket name prefix
regscale aws sync_s3 \
--regscale-id 123 \
--bucket-name-filter prod- \
--create-evidence \
--evidence-control-ids SC-13,SC-28
# Filter by tags
regscale aws sync_s3 \
--regscale-id 123 \
--tags Environment=Production \
--create-evidence
NIST 800-53 Controls Assessed
- SC-13: Cryptographic Protection
- SC-28: Protection of Information at Rest
- AC-3: Access Enforcement
- AC-6: Least Privilege
- AU-2: Audit Events
- AU-9: Protection of Audit Information
- CP-9: System Backup
What Gets Created in RegScale
- Control Assessments: SC, AC, AU, CP family controls
- Evidence: Bucket configs, encryption, versioning, logging, public access settings
- Issues: Unencrypted buckets, public access, no versioning
Common Use Cases
# Production bucket audit
regscale aws sync_s3 \
--regscale-id 123 \
--tags Environment=Production \
--create-evidence \
--evidence-control-ids SC-13,SC-28,AU-2,AU-9,CP-9 \
--create-issues
Updated about 7 hours ago