TITAN AUDIT — EVIDENCE DOCUMENT

PCI-DSS v4.0 — Control 1.3

Network access restricted (cardholder data)
EVIDENCE COLLECTED
2026-04-14 15:09:36
Category: network Environment: titan-audit-evidence (Vulnerability Demo) Evidence Items: 4
⚠ 3 VIOLATIONS FOUND
➡ Security Issues Requiring Immediate Attention
1
Port 22 (SSH) exposed to * — unrestricted internet access
2
Port 3389 (RDP) exposed to * — unrestricted internet access
3
Port 1433 (SQL Server) exposed to 0.0.0.0/0 — unrestricted internet access
🔴 These violations were automatically detected by TITAN AUDIT from live environment data. Each finding is annotated with visual proof below.

COLLECTED EVIDENCE DATA

PropertyValue
namedemo-vuln-nsg
subscriptionPay-As-You-Go
resource_grouptitan-audit-evidence
locationeastus
rules[{'name': 'AllowSSH-Internet', 'direction': 'Inbound', 'access': 'Allow', 'protocol': 'Tcp', 'source': '*', 'source_port': '*', 'destination': '*', 'dest_port': '22', 'priority': 100}, {'name': 'Allow
nsgdemo-vuln-nsg
ruleAllowSSH-Internet
port22
sourceANY/Internet
subscriptionPay-As-You-Go
nsgdemo-vuln-nsg
ruleAllowRDP-Internet
port3389
sourceANY/Internet
subscriptionPay-As-You-Go
nsgdemo-vuln-nsg
ruleAllowSQL-Internet
port1433
sourceANY/Internet
subscriptionPay-As-You-Go

NETWORK SECURITY RULES — VISUAL PROOF

demo-vuln-nsg
RuleDirAccessSourcePortPriorityStatus
AllowSSH-InternetInboundAllow*22100⚠ VIOLATION — SSH OPEN TO INTERNET
🔴
➡ SECURITY VIOLATION DETECTED
Port 22 (SSH) is exposed to the entire internet (*). This violates PCI-DSS Requirement 1 and HIPAA §164.312(e)(1). Immediate remediation required — restrict source IP range to known addresses only.
AllowRDP-InternetInboundAllow*3389110⚠ VIOLATION — RDP OPEN TO INTERNET
🔴
➡ SECURITY VIOLATION DETECTED
Port 3389 (RDP) is exposed to the entire internet (*). This violates PCI-DSS Requirement 1 and HIPAA §164.312(e)(1). Immediate remediation required — restrict source IP range to known addresses only.
AllowSQL-InternetInboundAllow0.0.0.0/01433120⚠ VIOLATION — SQL OPEN TO INTERNET
🔴
➡ SECURITY VIOLATION DETECTED
Port 1433 (SQL Server) is exposed to the entire internet (0.0.0.0/0). This violates PCI-DSS Requirement 1 and HIPAA §164.312(e)(1). Immediate remediation required — restrict source IP range to known addresses only.
Generated by: TITAN AUDIT — Automated Evidence Collector
Scan ID: AUD-FB1199
Author: TITAN AUDIT — Compliance Evidence Platform
Organization: TITAN AI LLC
Date: 2026-04-14 15:09:36
Classification: CONFIDENTIAL
Signature Block
Prepared by: _____________________________ Date: __________
Reviewed by: _____________________________ Date: __________
Approved by: _____________________________ Date: __________
© 2026 TITAN AI LLC — All Rights Reserved. This evidence document was generated automatically. Evidence data is collected directly from the cloud environment API and has not been modified.