Reviewing CloudTrail events associated with your AWS resources takes only a few clicks! How? Just click on an AWS resource, and you will see a CloudTrail Events tab.

Once you click on the tab, Resmo aggregates and shows your CloudTrail event history associated with an AWS resource to help you rapidly review changes and secure your resources. The process is executed through a momentary API request to your CloudTrail.

The CloudTrail Events tab on each AWS resource detail modal displays:

• Event Name
• Event Time
• Username
• Event Source

You can click on each item to see detailed event data collected from your CloudTrail event history.

ℹ️ You must have CloudTrail set up for your AWS account to be able to use this feature on Resmo.

Now, you can quickly check up on your integrated services! The Integrations Dashboard summarizes each of your services' rules, changes, and resources on a streamlined card view. 

Integration summary cards display:

• Total number of rules, changes, and resources within the last 7 days
• Number of critical, high, medium, and low-level rules
• Number of resources added, changed, and removed within the last 7 days
• Major resources
• Rule, change, and resource increase percentage compared to last week

You can click card items to see the details of each, search for a specific integration using the search box, or filter based on integration categories.

Now, you can create your own API key to access the Resmo query endpoint via Rest API!

To create an API key, navigate to Settings → Integrations → Rest API Management tab. 

• The scopes and expiration dates of your API key can be managed on the Rest API Management map.
• Currently, Resmo supports the "Query" scope only.

Query scope represents that your API key can work with the query endpoint.

API is only available in paid plans.

For more information, visit the API documentation.

Have you noticed your brand new home page on Resmo? The home page is the first page you'll see when you log in to your Resmo account. From there, you can overview critical insights, including:

• How many resources, changes, and users you have on your account
• How many and which rules are in a warning state or critical
• Security, Resource, and Critical Rule insights

You can see details of all insights by clicking on them. 

Security Insights

• Critical security violations in your cloud accounts
• Critical issues related to encryption
• Deleted resources in the last 24 hours
• New critical rules compared to the previous week
• Average CIS benchmark score

Resource Insights

The Resources Insight section displays the number of your high-risk resources. You can see details of each by clicking each item.

• Users without MFA
• Admin users
• Public code repositories
• Public IP addresses
• Not encrypted databases

Critical Rule Insights

Critical Rule Insights shows the top 10 and high-severity rules in a warning state.

Search bar

Use the search bar on your home page to search what you are looking for in mode SQL or mode Text. Moreover, you can look up any data on your Graph page directly from your home page search bar. 

Bonus tip: You can use this feature no matter which page you are on. Just hit CMD+K to open KBAR and search across your Resmo account.

You can query and monitor your GitHub Actions Workflows and Action Workflow Runs. Actions you can take include but are not limited to the following:

• Query GitHub Actions Workflows and Action Workflow Runs
• Track their changes
• Create custom rules with custom queries
• Discover asset relations

We have a major new capability to announce! You can now dive deeper into resource relations on the brand new Graph page. It's where you can visually explore resource relationships. 

To get started, go to your Graph page under the Explore tab on the navigation bar. From there, type a search keyword and press enter to find resources and their possible relations.

• Optionally, you can filter by resource group, integrations, and resource type to narrow down the results. 
• Each node comes with a menu that can be accessed by clicking and holding a right click, where you can find Focus, Remove, Show Details, and Show Relations.

Focus: Focuses on the selected node(s) and their direct relationships. It can help reduce complex search results.

Remove: Removes selected node(s) from the graph.

Show Details: Shows a selected resource's details, JSON, and compliance status.

Show Relations: You can select a node to show its relations if not already visible. Alternatively, you can hit Load More to expand the graph with more relations of all nodes visible.

• Available layout options for your graphs include Automatic, Circle, and Hierarchical.

Ready to understand how your cyber assets relate to one another and visualize the blast radius in case of a potential attack? Head over to your Graph page and discover!

Say hi to the latest compliance pack addition to Resmo: AWS CIS 1.5.0 Pack! This benchmark ensures that your AWS account configurations align with the security best practices to help you maintain a strong security posture in the cloud.

Benchmark controls include the following:

• Identity and access management
• Storage 
• Logging
• Monitoring
• Networking

Currently, Resmo offers AWS CIS 1.4.0, AWS CIS 1.5.0 Level 1, and Level 2 Benchmark packs—all managed by Resmo.

Now, you can easily enable multi-factor authentication for your Resmo account, or if you're an admin, you can enforce MFA for all users in your account. 

• Set up MFA for your personal account from your Profile page on Resmo.
• Account-wide MFA and SSO enforcement options are on Account>Account Information page.
• Only the account owner can enforce MFA. (Account-wide MFA enforcement is available for paid plans only.)

Still haven't set up MFA for your account? Go ahead and set it up in minutes for an additional layer of security.

We're excited to share that now you can run queries with Free Text Search in addition to SQL. Search any term, keyword, phrase, ID, or environment variables across all your resources within milliseconds.

ℹ️ To use the Free Text Search option, go to your Search page, then select Free Text from the top right. You can switch between SQL and Free Text for each query tab.

SQL and Free Text Search have their own advantages depending on the use case. Since you're no longer restricted to SQL statements, you can:

• Easily spot a piece of specific information across many accounts
• Debug specific issues faster
• Search anything from names, domain names, and any unique identifiers within logs to a phrase in your repo description; your choices are endless in free form.

Ready to give it a quick try? Just type your name and run the query, then see every resource that includes your name. 🔎

You can now use Terraform to easily integrate Resmo with your AWS account. See the developer doc for step-by-step instructions on manual AWS integration using Terraform script.

With the new addition, the current list of AWS integration methods are:

• Installation using CloudFormation
• Manual installation using AWS CLI
• Manual installation with AWS Console
• Manual installation with Terraform