My Methodology to AWS Detection Engineering (Part 1: Object Selection)

Introduction Welcome to the first installment of my new blog series discussing my methodology for threat detection engineering in AWS. This blog assumes you are familiar with Splunk Enterprise Security, its terminology, and/or similar SIEM functional...