CodeShield is a cloud security platform that analyzes AWS environments for security issues and consolidates findings into a unified graph-based model. The platform performs a comprehensive scan of AWS infrastructure, covering a wide range of services and technologies, including: - Serverless functions (Lambda) - Databases (DynamoDB, RDS) - Virtual machines (EC2) - Container workloads (ECS/Docker) - API Gateways - Storage (S3) - Networks and security groups - IAM policies CodeShield supports multiple infrastructure-as-code and deployment frameworks, including CloudFormation, Terraform, Serverless Framework, and AWS Console configurations. Key security checks performed by the platform include: - Misconfiguration detection: Identifies issues such as unencrypted S3 buckets, missing logging, and over-privileged IAM policies. - Vulnerability and CVE scanning: Checks Lambda functions and containers against the National Vulnerability Database (NVD), OVAL repositories, and other vulnerability databases. - Container security: Detects vulnerable container images, known vulnerable packages, insecure configurations, and open ports. - Publicly exposed resource detection: Identifies unauthenticated API gateway routes, open S3 buckets, and open networks. - Inventory and asset management: Maintains a complete inventory of all cloud services, assets, packages, and versions. - Risk prioritization: Assesses the impact and criticality of findings to surface the most important issues. All findings are merged into a single graph that visualizes attack paths, resource relationships, and data flows across the AWS environment. The graph enables users to explore infrastructure from a high-level perspective and drill down into specific resources and vulnerabilities.