Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
This policy detects when access was granted directly (not via groups). This policy is defined by default by Authomize to track AWS only. It is possible to edit the existing policy or create more versions to track other apps.
| Attribute | Value |
|---|---|
| Type | Analytic Rule |
| Solution | Authomize |
| ID | d7ee7bb5-d712-4d44-b201-b13379924934 |
| Severity | Low |
| Status | Available |
| Kind | Scheduled |
| Tactics | InitialAccess, PrivilegeEscalation |
| Techniques | T1078, T1078 |
| Required Connectors | Authomize |
| Source | View on GitHub |
This content item queries data from the following tables:
| Table | Transformations | Ingestion API | Lake-Only |
|---|---|---|---|
Authomize_v2_CL 🔶 |
? | ✓ | ? |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊