Here are some commonly asked questions and their corresponding J1QL queries. You can easily modify the properties and tags used in each query to customize it for your own specific scenario.
Many of these are packaged in the Query Library directly accessible in the Landing app in JupiterOne.
Here is a catalog of the packaged questions.
Question/Query Categories
- AWS Permissions and Trusts
- Hardware/software inventory and configuration
- Running applications and processes
- Secrets and key management
- Network connections & zones
- Data Security
- Changes and attribution
- Risks and vulnerability management
- Identity, People and Privileged access
- Development
- User training and awareness
- Endpoint security