Knowledge Base
Panther.com
Release Notes
Demo Request
Search…
Overview
Quick Start
Data Sources & Transports
Writing Detections
Rules
Policies
Testing
Alert Summaries
Detection Packs
Caching
Data Models
Global Helper Functions
Report Mapping
Triaging Alerts
Alert Runbooks
Built-in Policies
Built-in Rules
AWS CloudTrail Modified
AWS Config Service Modified
AWS Console Login Failed
AWS Console Login Without MFA
AWS EC2 Gateway Modified
AWS EC2 Network ACL Modified
AWS EC2 Route Table Modified
AWS EC2 SecurityGroup Modified
AWS EC2 VPC Modified
AWS IAM Policy Modified
AWS KMS CMK Loss
AWS Root Activity
AWS S3 Bucket Policy Modified
AWS Unauthorized API Call
Alert Management (Beta)
Cloud Security Scanning
Alert Destinations
Data Analytics
Enrichment
System Configuration
Guides
Help
Panther Developer Workflows
Panther API
Panther Analysis Tool
Managing Detections via CI/CD
GitHub Actions Onboarding Guide
Panther Config SDK (Beta)
Powered By
GitBook
AWS Config Service Modified
This rule monitors for modifications to AWS Config.
Risk
Remediation Effort
Medium
Low
AWS Config is a configuration monitoring tool, and changes to it could mean loss of visibility into configuration changes in your AWS account.
Remediation
If this Config change was not planned, revert the change and investigate who initiated it.
References
CIS AWS Benchmark 3.9: "Ensure a log metric filter and alarm exist for AWS Config configuration changes"
Previous
AWS CloudTrail Modified
Next
AWS Console Login Failed
Last modified
1yr ago
Copy link