https://cloudidentity.googleapis.com/v1/groups lists group resources available to a user for Google.Adversaries may attempt to list ACLs for objects to determine the owner and other accounts with access to the object, for example, via the AWS GetBucketAcl API. Using this information an adversary can target accounts with permissions to a given object or leverage accounts they have already compromised to access the object.">
产品 | 依赖关系 | 数据源 | 访问所需的 | 协议 | 收集的数据 | 笔记 |
---|---|---|---|---|---|---|
Tenable.cs | AWS | 只读 | HTTPS | 云用户的列表,组织和会员 |
框架:主教法冠ATT&CK
家庭:发现
技术:权限组的发现
Sub-Technique:云组
平台:AWS
产品要求:Tenable.cs
站得住脚的发布日期:2022年第四季度