Questions tagged with Threat Detection
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
2
answers
0
votes
253
views
asked 7 months agolg...
In the Windows log, I noticed an error 36874;
"An TLS 1.2 connection request was received from a remote client application, but none of the cipher suites supported by the client application are...
1
answers
0
votes
500
views
asked 9 months agolg...
When I signed up for AWS there was already configurations that were being used that I did not set up at all, I had never used the service before. There was Kubernetes, Lambda, VPC set up and...
1
answers
0
votes
201
views
asked 9 months agolg...
Purpose of Guarddutylg...
Hi Team,
Im aware Guardduty is used for threat detection based on the API calls.
Im struck where not all logs are appearing in the Guardduty.
I have a control tower setup with organization enabled...
2
answers
0
votes
242
views
asked a year agolg...
Our company is considering purchasing a partner threat list for GuardDuty to generate additional findings. What has been others experience with that? Is the default Amazon threat list good enough? ...
1
answers
0
votes
315
views
asked 2 years agolg...
Someone pointed Nessus at my EC2 machine and performed a 12minute vunerability scan - Their IP traces back to AWS - There are more than 200 entries across all logs in /var/log/httpd. I believe my...
2
answers
0
votes
257
views
asked 2 years agolg...
Hello All,
Does anyone experience False Positives with GuardDuty? If yes, what do you do to tune or update false positive findings? What options do customers have?
Recently, i've notice a lot...
1
answers
0
votes
742
views
asked 2 years agolg...
- 1
- 12 / page