This week's articles
Exploring AWS STS AssumeRoot
A post from the Elastic team exploring AWS STS AssumeRoot, its risks, detection strategies, and practical scenarios to secure against privilege escalation and account compromise.
#aws
#elastic
#monitor
Log Poisoning in Microsoft Sentinel
This article discusses log poisoning attacks against Microsoft Sentinel, explaining how attackers can manipulate logs to evade detection. It covers attack techniques, potential impacts, and mitigation strategies for defenders to protect their SIEM environments.
#azure
#monitor
|