Skip to content

v3.12.0
Compare
Choose a tag to compare
@josehelps josehelps released this 19 Jan 18:28
v3.12.0
3a81e29
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

New Detections

  • AWS detect users creating keys with encrypt policy without MFA
  • BCDEdit Failure Recovery Modification
  • AWS network access control list created with all open ports
  • AWS network access control list deleted
  • Detect new open S3 Buckets over AWS CLI
  • O365 bypass MFA via trusted IP
  • Detect hosts connecting to dynamic domain providers

Updates

  • AWS detect users with kms keys performing encryption against S3 buckets
  • Detect new open S3 buckets

Other

  • Circle CI Config updates
  • Increase in testing coverage
  • Added notable alert action configurations to all savedsearches
Assets 3
Loading