Explore how you can quickly prepare for, respond to, and recover from security events. Learn more.
All Content tagged with Threat Detection
Content language: English
Select up to 5 tags to filter
Sort by most recent
11 results
EXPERT
published a month ago13 votes537 views
This Article talks about activating Malware protection for S3 on GuardDuty without GuardDuty Experience
Hi all
I've configured Cognito to remember devices and allow device auth (DEVICE_SRP_AUTH) once an initial login **with** email MFA has occurred.
What I'd now like to do is use adaptive authenticati...
EXPERT
published 3 months ago1 votes212 views
Unlock the power of Amazon GuardDuty with the new guide on conducting a successful Proof of Concept (PoC). GuardDuty is AWS's intelligent threat detection service that provides managed, centralized se...
Is there any way to enable guard duty's S3 protection for only some buckets?
As an example I have a bucket that stores company logos and profile pictures. I don't want all these access events monitor...
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
In the Windows log, I noticed an error 36874;
"An TLS 1.2 connection request was received from a remote client application, but none of the cipher suites supported by the client application are suppor...
When I signed up for AWS there was already configurations that were being used that I did not set up at all, I had never used the service before. There was Kubernetes, Lambda, VPC set up and activate...
Hi Team,
Im aware Guardduty is used for threat detection based on the API calls.
Im struck where not all logs are appearing in the Guardduty.
I have a control tower setup with organization enabled wh...
Our company is considering purchasing a partner threat list for GuardDuty to generate additional findings. What has been others experience with that? Is the default Amazon threat list good enough? ...
Someone pointed Nessus at my EC2 machine and performed a 12minute vunerability scan - Their IP traces back to AWS - There are more than 200 entries across all logs in /var/log/httpd. I believe my serv...
Hello All,
Does anyone experience False Positives with GuardDuty? If yes, what do you do to tune or update false positive findings? What options do customers have?
Recently, i've notice a lot o...