AMI's that are publicly accessible
AMIs are Machine Images that contain all the information that is needed to launch a new Amazon EC2 instance. They act as an exact copy of another EC2 instances that contains application configuration that will be needed to ensure the EC2 instance functions as it is intended to. When a user creates a new AMI they have the option to make this pubic, exposing this to every other user that leverages AWS and registering this in the global AMI catalog. Because AMIs often contain proprietary or sensitive data it is considered an AMI security best practice to ensure your AMIs are set to private. By having a full inventory of all of your AMIs in all regions and all accounts will allow you to easily pinpoint where you may have public AMIs in order to ensure compliancy with the NIST & GDPR frameworks.