https://blog.cetinich.netBrent's Blog - Posts tagged cloudtrail2026-03-22T14:39:12.151065+00:00ABloghttps://blog.cetinich.net/content/2020/cloudtrail-vpc-endpoint-denied-not-logged/CloudTrail and VPC Endpoints Logging2020-01-10T00:00:00+00:00Brent Cetinich<p class="ablog-post-excerpt"><p>Today I learnt that AWS CloudTrail does not log requests that are denied by VPC
endpoint policy. The reason for this is that it would allow an attacker to
exfiltrate data via CloudTrail.</p>
</p>
Today I learnt that AWS CloudTrail does not log requests that are denied by VPC
endpoint policy. The reason for this is that it would allow an attacker to
exfiltrate data via CloudTrail.2020-01-10T00:00:00+00:00