Rule Library
Sigma Rules
3 rules found for "vitaliy0x1"
3,707Total
3,116Detection
451Emerging
137Hunting
Detectionmediumtest
AWS CloudTrail Important Change
Detects disabling, deleting and updating of a Trail
AWScloudtrail
TA0005 · Defense EvasionT1562.008 · Disable or Modify Cloud Logs
vitaliy0x1Tue Jan 21cloud
Detectionhightest
AWS Config Disabling Channel/Recorder
Detects AWS Config Service disabling
AWScloudtrail
TA0005 · Defense EvasionT1562.008 · Disable or Modify Cloud Logs
vitaliy0x1Tue Jan 21cloud
Detectionmediumtest
AWS Root Credentials
Detects AWS root account usage
AWScloudtrail
TA0004 · Privilege EscalationTA0005 · Defense EvasionTA0001 · Initial AccessTA0003 · Persistence+1
vitaliy0x1Tue Jan 21cloud