Difference between revisions of "AWS GuarDuty: Finding type"

From wikieduonline
Jump to navigation Jump to search
m (Welcome moved page Finding type to AWS GuarDuty: Finding type)
 
(3 intermediate revisions by the same user not shown)
Line 4: Line 4:
 
  Finding type: Policy:IAMUser/RootCredentialUsage
 
  Finding type: Policy:IAMUser/RootCredentialUsage
 
  API DescribeClusterSnapshots was invoked using root credentials from IP address 185.xx.xx.xx.
 
  API DescribeClusterSnapshots was invoked using root credentials from IP address 185.xx.xx.xx.
 +
 +
Finding type: Impact:IAMUser/AnomalousBehavior
 +
APIs commonly used in Impact tactics were invoked by user Root : YOUR_USERNAME, under anomalous circumstances. Such
 +
activity is not typically seen from this user.
 +
 +
 +
== See also ==
 +
* {{GuardDuty}}
 +
 +
[[Category:AWS]]

Latest revision as of 12:23, 24 January 2022

Finding type: Policy:IAMUser/RootCredentialUsage
API ListUserPolicies was invoked using root credentials from IP address 185.xx.xx.xx.

Finding type: Policy:IAMUser/RootCredentialUsage
API DescribeClusterSnapshots was invoked using root credentials from IP address 185.xx.xx.xx.

Finding type: Impact:IAMUser/AnomalousBehavior
APIs commonly used in Impact tactics were invoked by user Root : YOUR_USERNAME, under anomalous circumstances. Such 
activity is not typically seen from this user.


See also[edit]

Retrieved from "https://www.wikieduonline.com/index.php?title=AWS_GuarDuty:_Finding_type&oldid=111730"

Advertising: