See below for a list of AWS Tools.
Tool | Description |
---|---|
Cado's Import UI | Cado's Import UI - Cloud Data Importing Tool |
cloudgrep | cloudgrep is grep for cloud storage. It currently supports searching log files, optionally compressed with gzip (.gz) or zip (.zip), in AWS S3, Azure Storage or Google Cloud Storage. |
Invictus-AWS | Invictus-AWS is a python script that will help automatically enumerate and acquire relevant data from an AWS environment. |
See below for a list of AWS Artifacts.
Artifact or Process | Resource |
---|---|
AWS Amplify Logs | Do NOT forget the AWS Amplify Logs |
AWS Cloud Forensics | A New Perspective on Resource-Level Cloud Forensics |
AWS Cloud Forensics | The Importance of Depth: Cloud Forensics Beyond Log Analysis |
AWS Incident Response | Automated AWS Incident Response — The next episode |
AWS Incident Response | How to be IR Prepared in AWS |
AWS Incident Response | AWS Ransomware |
CloudTrail | AWS CloudTrail Forensics - A SIEM Case Study |
CloudTrail | AWS CloudTrail Forensics - HTB Nubilum-1 |
EC2 (Elastic Compute Cloud) | The Cado Platform can now Capture AWS EC2 Systems into E01 Format |