Appendix: Reference material

This reference document contains an example of how AWS services and functionality can be mapped to a classic intrusion analysis framework. Although this example mapping is comprehensive, it’s not exhaustive. There are additional controls that are not included in the example mapping that you should identify and leverage as appropriate.

Topics

Reconnaissance – Pre-Intrusion
Reconnaissance – Post-Intrusion
Exploit Development
Delivery
Exploitation
Installation
Command and Control
Actions on Objectives
Control Name Descriptions
Prioritizing Control Implementations

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Document history

Reconnaissance – Pre-Intrusion