valitydev/SigmaHQ
14
0
Fork 0
mirror of https://github.com/valitydev/SigmaHQ.git synced 2024-11-06 17:35:19 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Unset date update

Browse Source 
Signed-off-by: Rachel Rice <rachel.rice@lacework.net>
This commit is contained in:
Rachel Rice 2021-09-07 16:36:59 +01:00
parent eef6e71e2e
commit be5351947c
No known key found for this signature in database
GPG Key ID: A6DA98BA5E9E2C85
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
rules/cloud/aws/aws_update_login_profile.yml
View File

@ -5,7 +5,7 @@ description: |
An attacker with the iam:UpdateLoginProfile permission on other users can change the password used to login to the AWS console on any user that already has a login profile setup.
With this alert, it is used to detect anyone is changing password on behalf of other users.
author: toffeebr33k
date: 2021/09/07
date: 2021/08/09
references:
- https://github.com/RhinoSecurityLabs/AWS-IAM-Privilege-Escalation
logsource: