Query: At least one trail should be enabled with security best practices

Description

This rule helps ensure the use of AWS recommended security best practices for AWS CloudTrail, by checking for the enablement of multiple settings. These include the use of log encryption, log validation, and enabling AWS CloudTrail in multiple regions.

Query

Tables used in this query:

• aws_cloudtrail_trail

Controls using this query:

• At least one trail should be enabled with security best practices

SQL