Top Ad unit 728 × 90

Latest News

random

Daily Blog #688: How to make AWS EBS Direct Block API Events appear in Cloudtrail

Hello Reader,
           If you read the previous post you would know that in my testing the with the AWS EBS Direct Block API I could not find any Cloudtrail logs written. Well John Lukach has taken up the task of figuring out how to solve this by creating a role that the python script can assume that would generate the logs:

https://cloud.4n6ir.com/posts/cloud-4n6ir-fun-2-detecting-api-access-to-ebs-content/index.html

While John has created the ability to log his own accesses to the API I don't believe this will now capture any events from calling the API. So this is one step closer and a pretty neat workaround to capture events that otherwise would be missed but now what I would consider a fix. 
Daily Blog #688: How to make AWS EBS Direct Block API Events appear in Cloudtrail Reviewed by David Cowen on April 29, 2020 Rating: 5

No comments:

All Rights Reserved by Hacking Exposed Computer Forensics Blog © 2014 - 2020
Powered By Blogger, Designed by Sweetheme

Contact Form

Name

Email *

Message *

Powered by Blogger.