Product
medium
advisory
Detect AWS Route Table Modification via CloudTrail
2 rulesAn attacker may add a new route to an AWS route table, potentially redirecting network traffic for malicious purposes such as defense impairment or data exfiltration.
AWS EC2 +1
cloud
aws
network-routing
2r
low
advisory
New AWS Network ACL Entry Creation Detected
2 rules 1 TTPDetection of new Network ACL entries in AWS CloudTrail logs can indicate potential defense impairment or the opening of new attack vectors within an AWS account by an adversary.
AWS CloudTrail +1
attack.defense-impairment
attack.t1686.001
cloud
2r
1t