T1078.004 Valid Accounts: Cloud Accounts
121 detections mapped across 3 cloud providers.
Last reviewed:
Detection coverage across AWS, Azure and GCP. Every page generated from real data: DCV coverage mappings, CloudSigma rules, daily Intel briefs.
One page per MITRE ATT&CK technique we cover across AWS, Azure and GCP, with DCV coverage and CloudSigma rules.
32 pages 02SIEM × log-source combinations of the CloudSigma rule library.
11 pages 03Plain-language definitions for the security and detection-engineering terms we use.
26 pages 04Pillar primers on detection coverage, cloud-platform mapping, SIEM dialects and our integrity contract.
26 pages 05In-depth notes on detection rules: rationale, log shape, false-positive notes.
13 pages121 detections mapped across 3 cloud providers.
108 detections mapped across 3 cloud providers.
75 detections mapped across 3 cloud providers.
66 detections mapped across 3 cloud providers.
60 detections mapped across 3 cloud providers.
60 detections mapped across 2 cloud providers.