-
Notifications
You must be signed in to change notification settings - Fork 0
/
cloudtrail.json
1 lines (1 loc) · 2.29 KB
/
cloudtrail.json
1
{"metadata":{"0":{"product":{"version":"1.09","name":"CloudTrail","vendor_name":"AWS","feature":{"name":"Management"}},"event_code":"AwsApiCall","uid":"ed60516c-61de-4c2c-a7c9-a2ac1011caac","profiles":["cloud","datetime"],"version":"1.1.0"}},"time":{"0":1717203025000},"time_dt":{"0":1717203025000},"cloud":{"0":{"region":"us-east-1","provider":"AWS"}},"api":{"0":{"response":null,"operation":"GetBucketAcl","version":null,"service":{"name":"s3.amazonaws.com"},"request":{"data":"{\"bucketName\":\"cloudtraileventsdakota\",\"Host\":\"cloudtraileventsdakota.s3.us-east-1.amazonaws.com\",\"acl\":\"\"}","uid":"C3YK0BWH47K2EMDQ"}}},"dst_endpoint":{"0":null},"actor":{"0":{"user":{"type":"AWSService","name":null,"uid_alt":null,"uid":null,"account":null,"credential_uid":null},"session":null,"invoked_by":"cloudtrail.amazonaws.com","idp":null}},"http_request":{"0":{"user_agent":"cloudtrail.amazonaws.com"}},"src_endpoint":{"0":{"uid":null,"ip":null,"domain":"cloudtrail.amazonaws.com"}},"session":{"0":null},"policy":{"0":null},"resources":{"0":[{"uid":"arn:aws:s3:::cloudtraileventsdakota","owner":{"account":{"uid":"137294155267"}},"type":"AWS::S3::Bucket"}]},"class_name":{"0":"API Activity"},"class_uid":{"0":6003},"category_name":{"0":"Application Activity"},"category_uid":{"0":6},"severity_id":{"0":1},"severity":{"0":"Informational"},"user":{"0":null},"activity_name":{"0":"Read"},"activity_id":{"0":2},"type_uid":{"0":600302},"type_name":{"0":"API Activity: Read"},"status":{"0":"Success"},"is_mfa":{"0":null},"unmapped":{"0":{"key":["additionalEventData.AuthenticationMethod","sharedEventID","additionalEventData.SignatureVersion","additionalEventData.CipherSuite","additionalEventData.bytesTransferredOut","recipientAccountId","additionalEventData.x-amz-id-2","readOnly","managementEvent","additionalEventData.bytesTransferredIn"],"value":["AuthHeader","cabe719c-c538-43db-be9a-67b9c7c27b0c","SigV4","TLS_AES_128_GCM_SHA256","558","137294155267","McUV88V51EabpBqVGVue9MaVmAkS6MVlMHnYzPTP7zE3TzIOFDY4eNzzJtJQua2gwFPAA78W\/00=","true","true","0"]}},"accountid":{"0":null},"region":{"0":null},"asl_version":{"0":null},"observables":{"0":[{"name":"src_endpoint.domain","value":"cloudtrail.amazonaws.com","type":"Hostname","type_id":1},{"name":"resources[].uid","value":"arn:aws:s3:::cloudtraileventsdakota","type":"Resource UID","type_id":10}]}}