Tag
low
advisory
AWS DynamoDB Table Export to S3 Detection
2 rules 2 TTPsDetects the initial export of an AWS DynamoDB table to S3, potentially indicating reconnaissance or exfiltration by a compromised account or insider threat.
AWS DynamoDB +2
aws
dynamodb
exfiltration
2r
2t
low
advisory
AWS DynamoDB Scan by Unusual User
2 rules 3 TTPsDetection of unusual DynamoDB scan activity in AWS environments, potentially indicating exfiltration of sensitive information by an adversary using compromised credentials or a rogue insider.
DynamoDB
aws
exfiltration
cloudtrail
2r
3t