Google Full Network Traffic Packet Capture (980a7598-1e7f-4962-9372-2d754c930d0e)
Identifies potential full network packet capture in gcp. This feature can potentially be abused to read sensitive data from unencrypted internal traffic.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Data Staged - T1074 (7dd95ff6-712e-4056-9626-312ea4ab4c5e) | Attack Pattern | Google Full Network Traffic Packet Capture (980a7598-1e7f-4962-9372-2d754c930d0e) | Sigma-Rules | 1 |