AWS aws_single_sign-on Mappings

AWS Single Sign-On is a cloud-based single sign-on (SSO) service that makes it easy to centrally manage SSO access to all your AWS accounts and cloud applications. Specifically, it helps you manage SSO access and user permissions across all your AWS accounts in AWS Organizations. AWS SSO also helps you manage access and permissions to commonly used third-party software as a service (SaaS) applications, AWS SSO-integrated applications as well as custom applications that support Security Assertion Markup Language (SAML) 2.0.

Mappings

Capability ID Capability Description Category Value ATT&CK ID ATT&CK Name
aws_single_sign-on AWS Single Sign-On protect partial T1078 Valid Accounts
aws_single_sign-on AWS Single Sign-On protect partial T1078.002 Domain Accounts
aws_single_sign-on AWS Single Sign-On protect partial T1078.004 Cloud Accounts
aws_single_sign-on AWS Single Sign-On protect partial T1110 Brute Force
aws_single_sign-on AWS Single Sign-On protect significant T1110.001 Password Guessing
aws_single_sign-on AWS Single Sign-On protect significant T1110.003 Password Spraying
aws_single_sign-on AWS Single Sign-On protect significant T1110.004 Credential Stuffing
aws_single_sign-on AWS Single Sign-On protect significant T1133 External Remote Services