Powerpipe MCP Server →
Powerpipe Hub 
Hub
Mods
turbot/tailpipe-mod-aws-s3-server-access-log-detections
Overview
3Dashboards
6Benchmarks
21Queries
1Variables
GitHub

Query: s3_object_accessed_using_insecure_tls_version

Usage

powerpipe query aws_s3_server_access_log_detections.query.s3_object_accessed_using_insecure_tls_version

Tailpipe Tables

aws_s3_server_access_log
AWS plugin

SQL

select
  tp_timestamp as timestamp,
operation,
bucket as resource,
requester as actor,
tp_source_ip as source_ip,
tp_index as account_id,
tp_id as source_id,
http_status,
error_code,
*


from
  aws_s3_server_access_log
where
  operation in ('REST.GET.OBJECT', 'REST.PUT.OBJECT', 'REST.DELETE.OBJECT')
  and tls_version in ('TLSv1.0', 'TLSv1.1')
order by
  tp_timestamp desc;

Detections

The query is being used by the following detections: