See below for a list of AWS Tools.
| Tool | Description |
|---|---|
| Cado's Import UI | Cado's Import UI - Cloud Data Importing Tool |
| cloudgrep | cloudgrep is grep for cloud storage. It currently supports searching log files, optionally compressed with gzip (.gz) or zip (.zip), in AWS S3, Azure Storage or Google Cloud Storage. |
| Invictus-AWS | Invictus-AWS is a python script that will help automatically enumerate and acquire relevant data from an AWS environment. |
See below for a list of AWS Artifacts.
| Artifact or Process | Resource |
|---|---|
| AWS Amplify Logs | Do NOT forget the AWS Amplify Logs |
| AWS Cloud Forensics | A New Perspective on Resource-Level Cloud Forensics |
| AWS Cloud Forensics | The Importance of Depth: Cloud Forensics Beyond Log Analysis |
| AWS Incident Response | Automated AWS Incident Response — The next episode |
| AWS Incident Response | How to be IR Prepared in AWS |
| AWS Incident Response | AWS Ransomware |
| CloudTrail | AWS CloudTrail Forensics - A SIEM Case Study |
| CloudTrail | AWS CloudTrail Forensics - HTB Nubilum-1 |
| EC2 (Elastic Compute Cloud) | The Cado Platform can now Capture AWS EC2 Systems into E01 Format |