turbot/tailpipe-mod-github-audit-log-detections

Benchmark: T1098.003 Account Manipulation: Additional Cloud Roles

Usage

Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/tailpipe-mod-github-audit-log-detections

Start the Powerpipe server:

powerpipe server

Open http://localhost:9033 in your browser and select T1098.003 Account Manipulation: Additional Cloud Roles.

Run this benchmark in your terminal:

powerpipe benchmark run github_audit_log_detections.benchmark.mitre_attack_v161_ta0004_t1098_003

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run github_audit_log_detections.benchmark.mitre_attack_v161_ta0004_t1098_003 --share

Detections

Tags