Platform
- TECHNOLOGY
  The Rapid7 Command Platform
  AI-Powered Cybersecurity Platform
  Explore
Products
- NEW!
  Exposure Command
  Take Command of Your Attack Surface
  Request Demo
- DETECTION & RESPONSE
- Next-Gen SIEM
  INSIGHTIDR
- Threat Intelligence
  THREAT COMMAND
Services
- MXDR
  Managed Threat Complete
  24x7 MXDR to secure your extended ecosystem
  Request Demo
- DETECTION & RESPONSE
- Managed XDR
  MANAGED THREAT COMPLETE
- Incident Response Services
  EXPERIENCING A BREACH?
Resources
- NEW
  The 2024 Attack Intelligence Report
  Read the latest research by Rapid7 Labs
  READ NOW
Company
Partners
Sign In

InsightCloudSec

Platform
- TECHNOLOGY
  The Rapid7 Command Platform
  AI-Powered Cybersecurity Platform
  Explore
Products
- NEW!
  Exposure Command
  Take Command of Your Attack Surface
  Request Demo
- DETECTION & RESPONSE
- Next-Gen SIEM
  INSIGHTIDR
- Threat Intelligence
  THREAT COMMAND
Services
- MXDR
  Managed Threat Complete
  24x7 MXDR to secure your extended ecosystem
  Request Demo
- DETECTION & RESPONSE
- Managed XDR
  MANAGED THREAT COMPLETE
- Incident Response Services
  EXPERIENCING A BREACH?
Resources
- NEW
  The 2024 Attack Intelligence Report
  Read the latest research by Rapid7 Labs
  READ NOW
Company
Partners

Sign In

Documentation
InsightCloudSec
Release Notes

Docs Menu

Get Started

Getting Started

Welcome to InsightCloudSec
Getting Started Overview
Getting Support
- Insight Platform Support

Deploy

Product Architecture
Production Deployments
- AWS - EC2 or ECS Fargate - Terraform
Upgrading InsightCloudSec - AWS Terraform
Test Drive Deployments
- Linux Test Drive Deployment
- Mac Test Drive Deployment
Onboard a Cloud Account

Onboard and Manage Accounts

Amazon Web Services (AWS)

AWS Overview & Support
Onboard an AWS Account
Onboard an AWS Organization
AWS Additional Configuration

Google Cloud Platform (GCP)

GCP Overview & Support
Onboard a GCP Account
Onboard a GCP Organization
GCP Additional Configuration

Microsoft Azure

Azure Overview & Support
Onboard an Azure Account
Onboard an Azure Organization

Oracle Cloud Infrastructure (OCI)

OCI Overview & Support
Onboard an OCI Account

Additional Providers

Alibaba Cloud Overview & Support
- Onboard an Alibaba Cloud Account
China Cloud Overview & Support
Government Cloud Overview & Support

Collect and Integrate Data

Harvesting & Event-Driven Harvesting

Understanding Harvesting & Event-Driven Harvesting
- EDH Event Summaries and Reports
- Harvesting Failure Messages
Harvesting Strategies
AWS Event-Driven Harvesting
GCP Event-Driven Harvesting
- EDH - Supported Resources (GCP)
- EDH - GCP Setup
Azure Event-Driven Harvesting
- EDH - Supported Resources (Azure)
- EDH - Azure Setup

Integrations

Integrations Overview
Slack Integration
PagerDuty Integration
ServiceNow Integration
ServiceNow CMDB Integration
Tenable.io Integration
Splunk Integration
Jira Integration
Microsoft Teams Integration
InsightIDR Integration
InsightVM Integration
Qualys Integration
Crowdstrike Integration
Sumo Logic Integration
SentinelOne Integration

Understand Data

Visibility & Reporting

Assess Your Organization's Risk and Compliance
View Cloud Accounts and Details
View Kubernetes Clusters and Details
- Set up and Manage Clusters
Scope with Application Context
Audit with the Compliance Scorecard
Understand and Prioritize with Layered Context
View Threat Findings
Manage Data Collections
Tag Resources
Analyze Attack Paths
View Risk Across InsightCloudSec and InsightVM
- Executive Risk View Dashboard Cards
Remediate Risk Across Cloud and On-Prem Environments

Inventory

Review Resource Inventory
Visualize Related Resources
Group Resources
Resource Type Categories

Query Filters & Insights

Refine Scope with Query Filters
Understand Risk with Insights
Exempt Resources from Insight Findings

Manage and Act on Data

Bots & Automation

Automate with Bots
Working with Bots (Best Practices)
Creating Bots
Managing Bots
Use Jinja2 Templates with Bots
- Jinja2 - References

Infrastructure as Code (IaC) Security

Understanding IaC Security
- Terraform Support
- AWS CloudFormation Support
Getting Started with IaC Security
- Managing IaC Configurations
- Viewing Scan Results
Scan with the CLI IaC Tool
Integrate with CI/CD Tools

Cloud IAM Governance

Understanding Cloud IAM Governance
Review Identity Analysis
AWS Least-Privileged Access (LPA)
- AWS LPA Setup
- AWS LPA Usage
Azure Least-Privileged Access (LPA)
- Azure LPA Setup
- Azure LPA Usage
GCP Least-Privileged Access (LPA)
- GCP LPA Usage
Configure IAM Settings
Getting Started with Access Explorer

Vulnerability Management

Learn About Vulnerabilities
Configuring Host Vulnerability Assessment (HVA)
Configuring Container Vulnerability Assessment (CVA)
Reviewing and Managing Vulnerabilities

Workload Security

Kubernetes Automated Agent Deployment
Kubernetes Scanners
Kubernetes Security Guardrails
- Using Kubernetes Security Guardrails
OPA Gatekeeper Support

Manage System Settings

InsightCloudSec System Configuration

Platform Configuration & Settings
Organizations
Badges
System Settings
SMTP (Email Notifications)
- Amazon SES
License/API Activity
Job Backlog Export
Logs/Background Jobs
Public Accessibility Allow List

Identity, Access, & Permissions

Manage Users, Groups, and Roles
Manage Rapid7 Platform Login
Just In-Time User Provisioning (Authentication Server Support)
Configuring Authentication Servers

Developer Resources

Working with Plugins

APIs

Using InsightCloudSec API Documentation
InsightCloudSec API v2
InsightCloudSec API v3
InsightCloudSec API v4

Support

Release Notes
Getting Support

Get Started

Getting Started

Welcome to InsightCloudSec
Getting Started Overview
Getting Support
- Insight Platform Support

Deploy

Product Architecture
Production Deployments
- AWS - EC2 or ECS Fargate - Terraform
Upgrading InsightCloudSec - AWS Terraform
Test Drive Deployments
- Linux Test Drive Deployment
- Mac Test Drive Deployment
Onboard a Cloud Account

Onboard and Manage Accounts

Amazon Web Services (AWS)

AWS Overview & Support
Onboard an AWS Account
Onboard an AWS Organization
AWS Additional Configuration

Google Cloud Platform (GCP)

GCP Overview & Support
Onboard a GCP Account
Onboard a GCP Organization
GCP Additional Configuration

Microsoft Azure

Azure Overview & Support
Onboard an Azure Account
Onboard an Azure Organization

Oracle Cloud Infrastructure (OCI)

OCI Overview & Support
Onboard an OCI Account

Additional Providers

Alibaba Cloud Overview & Support
- Onboard an Alibaba Cloud Account
China Cloud Overview & Support
Government Cloud Overview & Support

Collect and Integrate Data

Harvesting & Event-Driven Harvesting

Understanding Harvesting & Event-Driven Harvesting
- EDH Event Summaries and Reports
- Harvesting Failure Messages
Harvesting Strategies
AWS Event-Driven Harvesting
GCP Event-Driven Harvesting
- EDH - Supported Resources (GCP)
- EDH - GCP Setup
Azure Event-Driven Harvesting
- EDH - Supported Resources (Azure)
- EDH - Azure Setup

Integrations

Integrations Overview
Slack Integration
PagerDuty Integration
ServiceNow Integration
ServiceNow CMDB Integration
Tenable.io Integration
Splunk Integration
Jira Integration
Microsoft Teams Integration
InsightIDR Integration
InsightVM Integration
Qualys Integration
Crowdstrike Integration
Sumo Logic Integration
SentinelOne Integration

Understand Data

Visibility & Reporting

Assess Your Organization's Risk and Compliance
View Cloud Accounts and Details
View Kubernetes Clusters and Details
- Set up and Manage Clusters
Scope with Application Context
Audit with the Compliance Scorecard
Understand and Prioritize with Layered Context
View Threat Findings
Manage Data Collections
Tag Resources
Analyze Attack Paths
View Risk Across InsightCloudSec and InsightVM
- Executive Risk View Dashboard Cards
Remediate Risk Across Cloud and On-Prem Environments

Inventory

Review Resource Inventory
Visualize Related Resources
Group Resources
Resource Type Categories

Query Filters & Insights

Refine Scope with Query Filters
Understand Risk with Insights
Exempt Resources from Insight Findings

Manage and Act on Data

Bots & Automation

Automate with Bots
Working with Bots (Best Practices)
Creating Bots
Managing Bots
Use Jinja2 Templates with Bots
- Jinja2 - References

Infrastructure as Code (IaC) Security

Understanding IaC Security
- Terraform Support
- AWS CloudFormation Support
Getting Started with IaC Security
- Managing IaC Configurations
- Viewing Scan Results
Scan with the CLI IaC Tool
Integrate with CI/CD Tools

Cloud IAM Governance

Understanding Cloud IAM Governance
Review Identity Analysis
AWS Least-Privileged Access (LPA)
- AWS LPA Setup
- AWS LPA Usage
Azure Least-Privileged Access (LPA)
- Azure LPA Setup
- Azure LPA Usage
GCP Least-Privileged Access (LPA)
- GCP LPA Usage
Configure IAM Settings
Getting Started with Access Explorer

Vulnerability Management

Learn About Vulnerabilities
Configuring Host Vulnerability Assessment (HVA)
Configuring Container Vulnerability Assessment (CVA)
Reviewing and Managing Vulnerabilities

Workload Security

Kubernetes Automated Agent Deployment
Kubernetes Scanners
Kubernetes Security Guardrails
- Using Kubernetes Security Guardrails
OPA Gatekeeper Support

Manage System Settings

InsightCloudSec System Configuration

Platform Configuration & Settings
Organizations
Badges
System Settings
SMTP (Email Notifications)
- Amazon SES
License/API Activity
Job Backlog Export
Logs/Background Jobs
Public Accessibility Allow List

Identity, Access, & Permissions

Manage Users, Groups, and Roles
Manage Rapid7 Platform Login
Just In-Time User Provisioning (Authentication Server Support)
Configuring Authentication Servers

Developer Resources

Working with Plugins

APIs

Using InsightCloudSec API Documentation
InsightCloudSec API v2
InsightCloudSec API v3
InsightCloudSec API v4

Support

Release Notes
Getting Support

CLI IaC Scanning Tool

The command line interface (CLI) Infrastructure as Code (IaC) tool mimics enables customers to run scans for the InsightCloudSec IaC capability from the command line. The primary use case for this tool is to provide the ability to perform an IaC scan to identify possible misconfigurations earlier in the development process, even before the the code is pushed into the pipeline.

Currently, IaC supports scanning Terraform and AWS CloudFormation Templates (CFT).

For details on getting started with the CLI check out the CLI IaC Scanning Tool Setup. Once you have the CLI IaC Scanning Tool configured, refer to our individual pages on the following topics:

CLI Commands and Parameters - Terraform and CloudFormation provides for more information on using mimics with Terraform and CloudFormation
Check out the CI/CD Tool Integrations for information on integrating the CLI scanning tool with common CI/CD pipelines
Refer to the page on Setting Values for CloudFormation Template (CFT) Parameters and Pseudo Parameters if you use parameters and pseudo parameters with your IaC code

Did this page help you?