Advent of Cyber 2024 [ Day 7 ] Writeup with Answers | TryHackMe Walkthrough
Oh, no. I’M SPEAKING IN CLOUDTRAIL!
Friend Link is in the Comments. If you Liked the post, please clap and share your thoughts on the Comments.
Welcome to TryHackme — Advent of Cyber 2024
What is JQ?
Earlier, it was mentioned that Cloudtrail logs were JSON-formatted. When ingested in large volumes, this machine-readable format can be tricky to extract meaning from, especially in the context of log analysis. The need then arises for something to help us transform and filter that JSON data into meaningful data we can understand and use to gain security insights. That’s exactly what JQ is (and does!). Similar to command line tools like sed, awk and grep, JQ is a lightweight and flexible command line processor that can be used on JSON.
What is IAM?
AWS Identity and Access Management (IAM) is a web service that helps you securely control access to AWS resources. With IAM, you can manage permissions that control which AWS resources users can access. You use IAM to…