Access Denied alerts not working with Assumed Roles

awslabs / aws-security-automation

Collection of scripts and resources for DevSecOps and Automated Incident Response Security

Apache License 2.0

616 stars 203 forks source link

Access Denied alerts not working with Assumed Roles #5

Open varunchandak opened 5 years ago

varunchandak commented 5 years ago

Example alert:

Access denied on event CreateNetworkInterface occured in account 123456789012 by <N/A>
Event source: ec2.amazonaws.com
Source agent: 1.2.3.4
Useragent: aws-internal/3 aws-sdk-java/1.11.526n