Execute qualquer Skill no Manus
com um clique

Execute qualquer Skill no Manus com um clique

Começar

cis-aws-storage-1-1

Estrelas617

Forks102

Atualizado13 de abril de 2026 às 04:22

AWS Storage Backups

Instalação

Instalar com Codex ou Claude Copie este prompt, cole no Codex, Claude ou outro assistente e deixe que ele revise a página da skill e instale para você.

Executar no Manus

Fonte

CyberStrikeus

CyberStrikeus/CyberStrike

Abrir repositório GitHub Ver repositórios do creator

Download

Executar no Manus

Ocupações relacionadasSOC

Baseado na classificação ocupacional SOC

Analistas de segurança da informaçãoInformática e Matemática·SOC 15-1212

SKILL.md

readonly

name	cis-aws-storage-1.1
description	AWS Storage Backups
category	cis-storage-services
version	1.0.0
author	cyberstrike-official
tags	["cis","aws","storage","backup","aws-backup","disaster-recovery","resilience"]
cis_id	1.1
cis_benchmark	CIS AWS Storage Services Benchmark v1.0.0
tech_stack	["aws"]
cwe_ids	[]
chains_with	["cis-aws-storage-1.2","cis-aws-storage-1.3","cis-aws-storage-1.4","cis-aws-storage-1.5","cis-aws-storage-1.6"]
prerequisites	[]
severity_boost	{}

CIS Control 1.1: AWS Storage Backups (Manual)

Profile Applicability

Level 2

Description

AWS Storage Backups is a managed AWS Service that establishes high resiliency to your cloud resources. AWS Storage Backups are like making extra copies of your important stuff on Amazon's computers. It is an excellent strategy to ensure that the data and resources you use remain available in the event of unrecoverable damage or loss to your resources.

Rationale

AWS Backups enable you to back up and restore all data lost during the attack. While AWS Storage Backups provide a level of security, there are numerous methods to fortify your backups, ensuring the protection of your data and services.

Impact

Not implementing AWS Backups can lead to:

Permanent data loss during security incidents or system failures
Extended recovery time in disaster scenarios
Non-compliance with data retention and disaster recovery requirements
Business continuity disruption

Audit Procedure

Via AWS Management Console

This control requires manual verification of:

Whether AWS Backup service is enabled and configured
Backup plans exist for critical storage resources
Backup schedules are defined according to organizational requirements
Backup retention policies align with compliance requirements

Via AWS CLI

Check if AWS Backup is being used in your account:

# List backup plans
aws backup list-backup-plans

# List backup vaults
aws backup list-backup-vaults

# List protected resources
aws backup list-protected-resources

Expected Result

AWS Backup service is enabled
Backup plans are configured for critical resources
Backup vaults exist with appropriate access controls
Protected resources list includes all critical storage assets

Remediation

Via AWS Management Console

Sign into AWS Console
- Navigate to https://console.aws.amazon.com/billing/home#/
- Enter your credentials
Access AWS Backup Service
- In the AWS Management Console, type "Backup" or navigate through the services menu to find the "Storage" category where AWS Backup is listed
Create Backup Plan
- Choose "Create backup plan" from the options provided
- You can either create a custom plan tailored to your requirements or select a pre-defined template offered by AWS

Via AWS CLI

# Create a backup vault
aws backup create-backup-vault \
  --backup-vault-name my-backup-vault

# Create a backup plan from a template
aws backup create-backup-plan \
  --backup-plan '{"BackupPlanName":"MyBackupPlan","Rules":[{"RuleName":"DailyBackups","TargetBackupVaultName":"my-backup-vault","ScheduleExpression":"cron(0 5 ? * * *)","StartWindowMinutes":60,"CompletionWindowMinutes":120,"Lifecycle":{"DeleteAfterDays":30}}]}'

Default Value

AWS Backup is not enabled by default. Organizations must manually configure backup plans, vaults, and resource assignments.

References

CIS Controls

Not mapped to specific CIS Controls v7 or v8 in the provided documentation.

Notes

This is a manual control requiring human verification
AWS Backup should be part of a comprehensive disaster recovery strategy
Consider cross-region backup replication for critical resources
Regularly test backup restoration procedures

Mais deste repositório

mesmo repositório

ebpf-attacks

CyberStrikeus/CyberStrike

eBPF-based post-exploitation for kernel-level credential harvesting, process hiding, and traffic interception on Linux

2026-06-23617

aws-postexploit

CyberStrikeus/CyberStrike

AWS post-exploitation for IAM privilege escalation, data exfiltration, persistence, and operational security via boto3

2026-06-22617

azure-postexploit

CyberStrikeus/CyberStrike

Azure/Entra ID post-exploitation for tenant compromise, Key Vault extraction, managed identity abuse, and token manipulation

2026-06-22617

cicd-attacks

CyberStrikeus/CyberStrike

CI/CD pipeline attacks for secret extraction, pipeline injection, and supply chain compromise via GitHub/Jenkins/GitLab

2026-06-22617

k8s-postexploit

CyberStrikeus/CyberStrike

Kubernetes post-exploitation for container escape, secret extraction, RBAC abuse, and cluster persistence

2026-06-22617

macos-postexploit

CyberStrikeus/CyberStrike

macOS post-exploitation for credential harvesting, DTrace monitoring, TCC bypass, and stealth operations via native tools

2026-06-22617

name	cis-aws-storage-1.1
description	AWS Storage Backups
category	cis-storage-services
version	1.0.0
author	cyberstrike-official
tags	["cis","aws","storage","backup","aws-backup","disaster-recovery","resilience"]
cis_id	1.1
cis_benchmark	CIS AWS Storage Services Benchmark v1.0.0
tech_stack	["aws"]
cwe_ids	[]
chains_with	["cis-aws-storage-1.2","cis-aws-storage-1.3","cis-aws-storage-1.4","cis-aws-storage-1.5","cis-aws-storage-1.6"]
prerequisites	[]
severity_boost	{}

CIS Control 1.1: AWS Storage Backups (Manual)

Profile Applicability

Level 2

Description

Rationale

Impact

Not implementing AWS Backups can lead to:

Permanent data loss during security incidents or system failures
Extended recovery time in disaster scenarios
Non-compliance with data retention and disaster recovery requirements
Business continuity disruption

Audit Procedure

Via AWS Management Console

This control requires manual verification of:

Whether AWS Backup service is enabled and configured
Backup plans exist for critical storage resources
Backup schedules are defined according to organizational requirements
Backup retention policies align with compliance requirements

Via AWS CLI

Check if AWS Backup is being used in your account:

# List backup plans
aws backup list-backup-plans

# List backup vaults
aws backup list-backup-vaults

# List protected resources
aws backup list-protected-resources

Expected Result

AWS Backup service is enabled
Backup plans are configured for critical resources
Backup vaults exist with appropriate access controls
Protected resources list includes all critical storage assets

Remediation

Via AWS Management Console

Sign into AWS Console
- Navigate to https://console.aws.amazon.com/billing/home#/
- Enter your credentials
Access AWS Backup Service
- In the AWS Management Console, type "Backup" or navigate through the services menu to find the "Storage" category where AWS Backup is listed
Create Backup Plan
- Choose "Create backup plan" from the options provided
- You can either create a custom plan tailored to your requirements or select a pre-defined template offered by AWS

Via AWS CLI

# Create a backup vault
aws backup create-backup-vault \
  --backup-vault-name my-backup-vault

# Create a backup plan from a template
aws backup create-backup-plan \
  --backup-plan '{"BackupPlanName":"MyBackupPlan","Rules":[{"RuleName":"DailyBackups","TargetBackupVaultName":"my-backup-vault","ScheduleExpression":"cron(0 5 ? * * *)","StartWindowMinutes":60,"CompletionWindowMinutes":120,"Lifecycle":{"DeleteAfterDays":30}}]}'

Default Value

AWS Backup is not enabled by default. Organizations must manually configure backup plans, vaults, and resource assignments.