Do we have any solutions from qualys on scanning for vulnerabilities and identifying the misconfiguration on the server less components in AWS like AWS Lambda, API Gateway and Dynamo DB.
Please let know know
Which components do you want to scan? You'd know that Lambda is a service that lets you run code and creates resources. So it's these resources that you should be scanning.
If it's EC2 instances, there are different ways to scan - using scanners, and agents. You could scan RDS instances as well.
What about dynamo DB, API Gate Way and S3 buckets? Is there a way to scan them?
I looked at the KB and Control Library to see if there's anything on DynamoDB, I couldn't find any.
S3 buckets can be monitored and evaluated using the CloudView application.
Here's a video: https://vimeo.com/264526986
Can you scan RDS for compliance or just vulnerabilities? For vulnerabilities, do you know if it supports authenticated or just unauthenticated?
Yes, you can, for both compliance and vulnerabilities. And it supports authenticated scans as well.
Retrieving data ...