InsightCloudSec Docs

Welcome to the InsightCloudSec Docs!

InsightCloudSec by Rapid7 (formerly DivvyCloud) is a Cloud-Native Security Platform that provides real-time analysis and automated remediation for continuous security and compliance for your multi-cloud environment.

For questions reach out to us through [email protected].

Take Me to the Docs!    Release Notes

Resource Matrix

A Table of Normalized InsightCloudSec Resource Names Organized by Category and CSP

InsightCloudSec has a standard vernacular (aka normalized terminology) that is used to describe virtual/software-defined resources across public and private cloud technologies. The table below includes the name of each Resource as it appears in the InsightCloudSec platform, the category of resource, and the CSP-specific name (where applicable).

📘

Supported Services & Regions

In general, InsightCloudSec provides support for the resources listed below for all regions in which they are available. In some scenarios some resources or services may not be available in certain regions. This is typically the result of restrictions related to the region itself or otherwise imposed by the CSP (e.g., AWS) to comply with regional policies. We recommend that you refer to the CSP-specific documentation on those specific regions for official details.

(For example, refer to the table for AWS services in China here.)

If you have other questions related to regions, or specific services and their support, contact us through [email protected].

The table below is scrollable. Click on the table to select and activate the scroll to view the full content.

Resource Type

Category

Amazon Web Services (AWS)

AWS GovCloud

Microsoft Azure

Google Cloud Platform (GCP)

Alibaba Cloud

Kubernetes

Oracle (OCI)

Access Analyzer

Identity & Management

AWS IAM Access Analyzer

Access List

Network

NACL / Security Group

NACL / Security Group

Network Security Group

Network Firewall

Security Group

Network Security Group/Security List

Access List Flow Log

Network

NSG (Network Security Group) Flow Log

Access List Rule

Network

Rules

Rules

Security Rules

Firewall Rules

Rules

Network Security Group Rule/Security List Rule

Airflow Environment

Compute

Managed Airflow Environment

API Access Key

Identity & Management

Access key ID

Access key ID

N/A

Service Account Key

Access Key ID

API Accounting Config

Identity & Management

CloudTrail

CloudTrail

N/A

Logs Storage

ActionTrail

App Run Service

Containers

AWS App Runner

Cloud Run

App Server

Compute

App Service Plan

Application Gateway

Network

API Gateway

Application Gateway Domain

Network

API Gateway Domain

Application Key

Network

API Gateway Key

Application Stage

Network

API Gateway Stage

Autoscaling Group

Compute

Autoscaling Group

Autoscaling Group

Virtual Machine Scale Sets

Autoscalers

N/A

Autoscaling Launch Configuration

Compute

Launch Configurations

N/A

N/A

N/A

N/A

Backend Services

Compute

Load Balancer Backend Services

Backup Vault

Storage

Backup Vault

N/A

Batch Environment

Compute

Batch Compute Environment

Batch Compute Environment

Batch Account

Batch Pool

Compute

Batch Pool

Big Data Instance

Compute

Redshift

Redshift

N/A

BigQuery

N/A

Big Data Snapshot

Storage

Redshift Snapshot

Redshift Snapshot

N/A

N/A

N/A

Big Data Workspace

Compute

Azure Synapse

Build Project

Compute

CodeBuild Project

CodeBuild

Cache Database Cluster

Compute

MemoryDB

MemoryDB

Cache Instance

Compute

ElastiCache

Elasticache

Azure Redis

Memorystore

AsparaDB for Redis

Cache Snapshot

Storage

ElastiCache Snapshot

Redis Snapshot

Cloud Access Point

Identity & Management

S3 Access Point

S3 Access Point

Cloud Account

Identity & Management

Cloud Account

Cloud Account

Cloud Subscription

Project

Cloud Account

Cloud Tenancy

Cloud Advisor Check

Identity & Management

Trusted Advisor

N/A

N/A

N/A

N/A

Cloud Alarm

Identity & Management

CloudWatch Alarm

CloudWatch Alarm

N/A

N/A

N/A

Cloud Dataset

Storage

BigQuery Dataset

Cloud Domain Group

Identity & Management

N/A

N/A

N/A

Domain Groups

Cloud Domain User

Identity & Management

N/A

N/A

Domain Users

Cloud Event Bus

Identity & Management

CloudWatch/Event Bridge Event Bus

CloudWatch/Event Bridge Event Bus

Cloud Event Rule

Identity & Management

CloudWatch Rule

CloudWatch Rule

Cloud Group

Identity & Management

IAM Group

IAM Group

Group

Group

RAM Group

Group

Cloud Limit

Identity & Management

Limit

Limit

Limit

Limit

N/A

Cloud Log Destination

Identity & Management

CloudWatch Logs Destinations

CloudWatch Logs Destinations

Cloud Outpost

Identity & Management

Outpost

Cloud Policy

Identity & Management

IAM Policy

IAM Policy

Policy

Role Permission Set

RAM Policy

Cloud Region

Identity & Management

Region

N/A

N/A

Region

Region

Region

Cloud Resource Group

Identity & Management

Azure Resource Group

Cloud Role

Identity & Management

IAM Role

IAM Role

Role

Service Account

RAM Role

Cloud Service Cost

Identity & Management

Consolidated Bill

Consolidated Bill

N/A

Billing Export

Cloud User

Identity & Management

IAM User

IAM User

User

User

RAM User

User

Clusters

Containers

EKS/ECS/Fargate Cluster

EKS/ECS/Fargate Cluster

Kubernetes Service

GKE

N/A

Kubernetes Cluster

Cold Storage

Storage

Glacier

N/A

N/A

N/A

N/A

Container Image

Containers

Container Image (ECR)

Container Image (ECR)

Container Image

Container Image

Container Instances

Containers

Container Instance (EKS)

Container Instance (EKS)

Azure Container Instance

Node Instance

Container Registry

Containers

Container Registry (ECR)

Container Registry (ECR)

Container Registry

Container Registry

Containers

Containers

Container (ECS)

Container (ECS)

Container

Content Delivery Network

Network

CloudFront

CloudFront

N/A

N/A

N/A

Data Analytics Workspace

Storage

Athena Workgroup

Athena Workgroup

Data Factory

Storage

Azure Data Factory

Data Lake Storage

Storage

Data Lake Storage Gen1

Data Stream

Storage

Kinesis

Kinesis

Event Hub Namespace

N/A

N/A

Data Sync Task

Storage

DataSync Task

Database

Compute

N/A

N/A

SQL Database / Dedicated SQL Pool

Cloud SQL Database

Database Cluster

Compute

RDS Database, Neptune, DocumentDB

Database Instance

Compute

RDS Database, Neptune, DocumentDB

RDS Database

Azure Database for Postgres/MySQL/MariaDB

Cloud SQL

AsparaDB for RDS

MySQL DB System/Autonomous Data Warehouse

Database Migration Instance

Storage

DMS Replication Instance

DMS Replication Instance

Database Proxy

Storage

RDS Database Proxy

RDS Database Proxy

Database Snapshot

Storage

RDS Snapshot

RDS Snapshot

N/A

Cloud SQL Backup

RDS Snapshot

Databricks Workspace

Storage

Databricks Workspace

DDoS Protection

Network

Shield

Delivery Stream

Storage

Firehose

N/A

N/A

N/A

N/A

Deployments/Tasks

Containers

Container Pod (ECS/Fargate)

Deployment

Diagnostic Settings

Identity & Management

Diagnostic Settings

Direct Connect

Network

Direct Connect

Express Route Circuit

Cloud Interconnect

Directory Service

Identity & Management

AWS Directory Service

Distributed Table

Compute

DynamoDB

DynamoDB

Azure CosmosDB

N/A

N/A

NoSQL Database

Distributed Table Cluster

Compute

Dynamo DB Accelerator (DAX)

N/A

N/A

Bigtable

N/A

DNS Domain

Identity & Management

Route53 Domain

DNS Zone

Network

Route53 DNS Zone

N/A

DNS Zone

DNS Zone

N/A

Elasticsearch Instance

Compute

Elasticsearch

Elasticsearch

N/A

N/A

N/A

Email Service Domain

Compute

Simple Email Service (SES)

Simple Email Service (SES)

N/A

N/A

N/A

Encryption Key

Identity & Management

KMS

KMS

Key Vault Key

Cloud KMS Cryptokey

KMS Key

Master Encryption Key

Encryption Key Vault

Identity & Management

Key Vault

Cloud KMS Keyring

Vault

ETL Data Catalog

Storage

Glue Data Catalog

Glue Data Catalog

ETL Security Configuration

Storage

Glue Security Configuration

Glue Security Configuration

Event Subscription

Compute

RDS Event Subscription

RDS Event Subscription

File Share

Storage

NFS/SMB File Gateway Share

Forwarding Rules

Network

Load Balancer Forwarding Rules

Global Load Balancer

Network

Front Door

GraphQL API

Storage

AppSync API

N/A

Hypervisor

Compute

Dedicated Instance

Dedicated Instance

Dedicated Host

N/A

N/A

Identity Provider

Identity & Management

SAML Identity Provider

Ingress

Containers

N/A

N/A

Ingress

Instance

Compute

EC2 Instance

EC2 Instance

Virtual Machine

Instance

ECS Instance

Instance

Internet Gateway

Network

Internet Gateway

Internet Gateway

N/A

N/A

N/A

Lightsail

Compute

Amazon Lightsail

N/A

Load Balancer

Network

Load Balancer (ELB/ALB/NLB/Gateway)

ELB/ALB/NLB

Load Balancer/Application Gateway

Load Balancer

N/A

Logic App

Compute

Logic App

Log Analytics Workspace

Identity & Management

Log Analytics Workspace

Log Group

Identity & Management

CloudWatch Log Group

Machine Learning Instance

Compute

Sagemaker Notebook

AI Platform Notebook

MapReduce Cluster

Compute

Elastic Mapreduce (EMR)

Elastic Mapreduce (EMR)

MapReduce

Dataproc
MapReduc

N/A

Message Broker Instance

Compute

MQ

Message Queue

Compute

Simple Queue Service (SQS)

Simple Queue Service (SQS)

ServiceBus Queue

N/A

N/A

Namespace

Containers

Namespace

NAT Gateway

Network

NAT Gateway (VPC)

N/A

NAT Gateway

Cloud NAT

N/A

Network

Network

VPC

VPC

VPC

VCN

Network Address Group

Network

Managed Prefix List

Managed Prefix List

IP Group

Network Endpoint

Network

VPC Endpoint/PrivateLink

Service Endpoint/Service Endpoint Policy/Private Endpoint

Network Endpoint Service

Network

VPC Endpoint Service

Network Firewall

Network

Azure Firewall

Network Firewall Rule

Network

Azure Firewall Rule

Network Firewall Rule List

Network

Azure Firewall Rule Collection

Network Flow Log

Network

VPC Flow Log (VPC)

VPC Flow Log

N/A

N/A

N/A

Network Interface

Network

Network Interface

Network Interface

Network Interface

Network Interface

Network Interface

VCS Interface

Network Peer

Network

VPC Peer

VPC Peer

N/A

Network Peer

N/A

Notification Subscription

Compute

SNS Subscription

SNS Subscription

N/A

Pub / Sub Subscription

N/A

Subscription

Notification Topic

Compute

SNS Topic

SNS Topic

N/A

Pub / Sub Topic

N/A

Topic

Pod Security Policies

Containers

Pod Security Policy

Pods

Containers

Task Definition (ECS)

Pod

Private Image

Compute

AMI (Private)

AMI (Private)

Image

Image

Image

Private Subnet

Network

VPC Subnet

VPC Subnet

Subnet

Subnet

VSwitch

VCN Subnet

Public IP

Network

Elastic IP

Elastic IP

Reserved IP

Reserved IP

Elastic IP

Public IP

Query Log Config

Network

Route53 Resolver

Route53 Resolver

Reserved Instance

Compute

Reserved Instance

Reserved Instance

N/A

N/A

N/A

Route

Network

Route

Route

Route Table

Network

Route Table

N/A

Route Table

Route Table

Route Table

Search Cluster

Compute

Cloudsearch Cluster

Search Service

Search Index

Compute

Kendra Index

N/A

Secret

Identity & Management

Secret

N/A

Secret

N/A

N/A

Secret

Secure File Transfer

Storage

SFTP Server

Serverless Application

Compute

Serverless Application Repository

Serverless Function

Compute

Lambda

Lambda

N/A

Cloud Function

N/A

Service Control Policy

Identity & Management

Service Control Policy

Service Detector

Identity & Management

Services

Containers

Service

Shared Gallery

Compute

Shared Image Gallery

Shared Gallery Image

Compute

Image Definition

Shared Gallery Image Version

Compute

Image Version

Shared File System

Storage

EFS/FSx

N/A

File Share

Cloud Filestore

N/A

File System

Site-to-Site VPN

Network

Site-to-Site VPN (VPC)

VPN Tunnel

Snapshot

Storage

EBS Snapshot

EBS Snapshot

Snapshot

Snapshot

Snapshot

Block Volume Backup

Spanner

Storage

N/A

N/A

N/A

Cloud Spanner

N/A

SSH Key Pair

Identity & Management

SSH Key Pair

SSH Key Pair

SSH Key Pair

SSH Key Pair

SSH Key Pair

SSL Certificate

Identity & Management

IAM/ACM SSL Certificate

IAM/ACM SSL Certificate

SSL Certificate

SSL Certificate

N/A

SSM Document

Compute

SSM Document

SSM Document

Stack Template

Compute

CloudFormation Templates

CloudFormation Templates

Stackdriver Sink

Identity & Management

Stackdriver Sink

Storage Account

Storage

AWS Systems Manager Parameter Store (Parameter)

Storage Account

Storage Container

Storage

S3 Bucket

S3 Bucket

Blob Storage Container

Cloud Storage

Object Storage Bucket

Object Storage Backup

Stored Parameter

Storage

Stream Instance

Compute

MSK Instance

Target Proxies

Network

Load Balancer Target Proxies

Task Definitions

Container

Task Definition (ECS)

Threat Findings

Identity & Management

GuardDuty/Macie

Azure Defender

Timeseries Database

Storage

Amazon Timestream

Traffic Mirror Target

Network

VPC Traffic Mirror Target

VPC Traffic Mirror Targets

Transcoding Pipeline

Compute

Elastic Transcoder Pipeline

Transit Gateway

Network

Transit Gateway

User Pool

Identity & Management

Cognito User Pool

Video Stream

Storage

Kinesis Video Stream

Virtual Private Gateway

Network

Virtual Private Gateway

VPN Gateway

Volume

Storage

EBS Volume

EBS Volume

Disk

Persistent Disk

Disk

Block Volume

Web App

Compute

Elastic Beanstalk Environment

App Service

Web App Group

Compute

Elastic Beanstalk Application

Web Application Firewall

Network

Web Application Firewall (WAF); WAF-Regional

Web Application Firewall (WAF); WAF-Regional

Cloud Armor

Workspace

Compute

Workspace

N/A

N/A

N/A

N/A

Updated 10 days ago

Resource Matrix


A Table of Normalized InsightCloudSec Resource Names Organized by Category and CSP

Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.