AWS

October 9, 2025

AWS and VMware ESXi: Three New Analytic Rules for Execution, Exfiltration, and Lateral Movement

Three new Analytic Rules added across AWS CloudTrail and VMware ESXi — detecting EC2 startup script tampering (T1059), anonymous S3 object exfiltration (T1530), and SSH enablement on ESXi hosts (T1021). Read More →

October 7, 2025

AWS S3 Server Access Logs Connector: GA Promotion Removes Preview Status

AWS S3 Server Access Logs connector promoted from Preview to General Availability with version 3.0.1. Read More →

Auto-generated content based on the Azure-Sentinel GitHub repo.

Microsoft Sentinel is a trademark of Microsoft Corporation.