siv/aoc24
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
aoc24/7/wareville_logs/cloudtrail_log.json

2 lines
75 KiB
JSON
Raw Permalink Normal View History

Add files for Day 7: Oh, no. I'M SPEAKING IN CLOUDTRAIL!
2024-12-11 17:32:06 +01:00
{"Records":[{"eventVersion":"1.10","userIdentity":{"type":"AWSService","invokedBy":"cloudtrail.amazonaws.com"},"eventTime":"2024-11-28T15:20:24Z","eventSource":"s3.amazonaws.com","eventName":"PutObject","awsRegion":"ap-southeast-1","sourceIPAddress":"cloudtrail.amazonaws.com","userAgent":"cloudtrail.amazonaws.com","requestParameters":{"bucketName":"aoc-cloudtrail-wareville","x-amz-acl":"bucket-owner-full-control","x-amz-server-side-encryption-context":"eyJhd3M6Y2xvdWR0cmFpbDphcm4iOiJhcm46YXdzOmNsb3VkdHJhaWw6YXAtc291dGhlYXN0LTE6NTE4MzcxNDUwNzE3OnRyYWlsL2FvYy1jbG91ZHRyYWlsLXdhcmV2aWxsZSJ9","x-amz-server-side-encryption-aws-kms-key-id":"arn:aws:kms:ap-southeast-1:518371450717:key/b02ffc74-2338-4b85-857d-cb4638d80490","Host":"aoc-cloudtrail-wareville.s3.ap-southeast-1.amazonaws.com","x-amz-server-side-encryption":"aws:kms","key":"AWSLogs/518371450717/CloudTrail/ap-southeast-1/2024/10/22/518371450717_CloudTrail_ap-southeast-1_20241022T1520Z_AkyjR7g4qqbDiHgI.json.gz"},"responseElements":{"x-amz-server-side-encryption-aws-kms-key-id":"arn:aws:kms:ap-southeast-1:518371450717:key/b02ffc74-2338-4b85-857d-cb4638d80490","x-amz-server-side-encryption":"aws:kms","x-amz-server-side-encryption-context":"eyJhd3M6Y2xvdWR0cmFpbDphcm4iOiJhcm46YXdzOmNsb3VkdHJhaWw6YXAtc291dGhlYXN0LTE6NTE4MzcxNDUwNzE3OnRyYWlsL2FvYy1jbG91ZHRyYWlsLXdhcmV2aWxsZSIsImF3czpzMzphcm4iOiJhcm46YXdzOnMzOjo6YW9jLWNsb3VkdHJhaWwtd2FyZXZpbGxlL0FXU0xvZ3MvNTE4MzcxNDUwNzE3L0Nsb3VkVHJhaWwvYXAtc291dGhlYXN0LTEvMjAyNC8xMC8yMi81MTgzNzE0NTA3MTdfQ2xvdWRUcmFpbF9hcC1zb3V0aGVhc3QtMV8yMDI0MTAyMlQxNTIwWl9Ba3lqUjdnNHFxYkRpSGdJLmpzb24uZ3oifQ=="},"additionalEventData":{"SignatureVersion":"SigV4","CipherSuite":"TLS_AES_128_GCM_SHA256","bytesTransferredIn":3960,"SSEApplied":"SSE_KMS","AuthenticationMethod":"AuthHeader","x-amz-id-2":"muTINrHwKwNVkFbn4YjsSnzzjYSv5M30lJRVvJQLVw1c8Zk4LpWu2xhbOvJ8xghWkuhxfgWyzdE=","bytesTransferredOut":0},"requestID":"QTRVX6EEY2WYXXZQ","eventID":"7c0f1292-e49c-4cd0-9610-5212afc5c811","readOnly":false,"resources":[{"type":"AWS::S3::Object","ARN":"arn:aws:s3:::aoc-cloudtrail-wareville/AWSLogs/518371450717/CloudTrail/ap-southeast-1/2024/10/22/518371450717_CloudTrail_ap-southeast-1_20241022T1520Z_AkyjR7g4qqbDiHgI.json.gz"},{"accountId":"518371450717","type":"AWS::S3::Bucket","ARN":"arn:aws:s3:::aoc-cloudtrail-wareville"}],"eventType":"AwsApiCall","managementEvent":false,"recipientAccountId":"518371450717","sharedEventID":"b9559067-5550-4e0a-82f7-41714b300706","eventCategory":"Data"},{"eventVersion":"1.10","userIdentity":{"type":"IAMUser","principalId":"AIDAXRMKYT5OVGMN3LMH7","arn":"arn:aws:iam::518371450717:user/mayor_malware","accountId":"518371450717","accessKeyId":"ASIAXRMKYT5OYFSZNN2B","userName":"mayor_malware","sessionContext":{"attributes":{"creationDate":"2024-11-28T15:18:37Z","mfaAuthenticated":"false"}}},"eventTime":"2024-11-28T15:20:38Z","eventSource":"s3.amazonaws.com","eventName":"HeadBucket","awsRegion":"ap-southeast-1","sourceIPAddress":"53.94.201.69","userAgent":"[S3Console/0.4, aws-internal/3 aws-sdk-java/1.12.750 Linux/5.10.226-193.880.amzn2int.x86_64 OpenJDK_64-Bit_Server_VM/25.412-b09 java/1.8.0_412 vendor/Oracle_Corporation cfg/retry-mode/standard]","requestParameters":{"bucketName":"aoc-cloudtrail-wareville","Host":"s3.ap-southeast-1.amazonaws.com"},"responseElements":null,"additionalEventData":{"SignatureVersion":"SigV4","CipherSuite":"TLS_AES_128_GCM_SHA256","bytesTransferredIn":0,"AuthenticationMethod":"AuthHeader","x-amz-id-2":"k1v7Owas1ibmv6Tl8zgDlxvvXkTOgT+OiDASB4XuzICeN01O9cBlw60eRpnnH67O/gVCfZjzmVc=","bytesTransferredOut":0},"requestID":"8EDAV2JDE3J60RKP","eventID":"1192c122-1d4c-444d-b009-2fe55e235f90","readOnly":true,"resources":[{"type":"AWS::S3::Object","ARNPrefix":"arn:aws:s3:::aoc-cloudtrail-wareville/"},{"accountId":"518371450717","type":"AWS::S3::Bucket","ARN":"arn:aws:s3:::aoc-cloudtrail-wareville"}],"eventType":"AwsApiCall","managementEvent":false,"recipientAccountId":"518371450717","vpcEndpointId":"vpce-c94096a0","eventCategory":"Data","tlsDetails":{"tlsVersion":"TLSv1.3","cipherSuite":"TLS_AES_128_GCM_SHA256","clientProvidedHos
Reference in New Issue Copy Permalink