1. Home
  2. Mapping Frameworks
  3. AWS Home
  4. AWS Shield

AWS aws_shield Mappings

AWS Shield is a service that protects against Distributed Denial of Service attacks. There are two tiers for this service Standard and Advanced. AWS Shield Standard defends against most common, frequently occurring network and transport (Layer 3 and 4 attacks) layer DDoS attacks that target your web site or applications. AWS Shield Advanced adds on to standard by providing additional detection and mitigation against large and sophisticated DDoS attacks. There is near real-time visibility into attacks. AWS Shield Advanced also comes with 24x7 access to the AWS DDoS Response Team (DRT).

Mappings

Capability ID Capability Description Category Value ATT&CK ID ATT&CK Name
aws_shield AWS Shield respond significant T1498 Network Denial of Service
aws_shield AWS Shield respond significant T1498.001 Direct Network Flood
aws_shield AWS Shield respond significant T1498.002 Reflection Amplification
aws_shield AWS Shield respond significant T1499 Endpoint Denial of Service
aws_shield AWS Shield respond significant T1499.001 OS Exhaustion Flood
aws_shield AWS Shield respond significant T1499.002 Service Exhaustion Flood
aws_shield AWS Shield respond significant T1499.003 Application Exhaustion Flood