New Network ACL Entry Added (e1f7febb-7b94-4234-b5c6-00fb8500f5dd)
Detects that network ACL entries have been added to a route table which could indicate that new attack vectors have been opened up in the AWS account.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| New Network ACL Entry Added (e1f7febb-7b94-4234-b5c6-00fb8500f5dd) | Sigma-Rules | Exploit Public-Facing Application - T1190 (3f886f2a-874f-4333-b794-aa6075009b1c) | Attack Pattern | 1 |