Tags
Cloud
ATT&CK Tactic
Lateral Movement (TA0008)
Last edited
Sep 22, 2024 10:09 AM
Status
Stub
Defenses
IAM Policies
Attackers can abuse an EC2 instance's role to call the AWS Systems Manager (SSM) API in order to run commands on a remote EC2 instance if its managed by SSM.