☁️ Cloud Artefacts

Cloud Logs

Audit Login activity For admin account go to IAM -> Credential report to see all the users and the following information:

Cloud Users And Policies

IAM Stands for Identity Access Management. There are several types of IAM identities. They are usually called “Principal”.

AWS Configuration

Default Configurations By default, SSH 22 and RDP 3389 are closed, but these are suggested to be opened when creaing them, warning how dangeroud this is.