By using AWS re:Post, you agree to the AWS re:Post Terms of Use

All Content tagged with Threat Detection

Content language: English

Select up to 5 tags to filter
Sort by most recent
11 results
profile pictureAWS
EXPERT
published a month ago13 votes537 views
This Article talks about activating Malware protection for S3 on GuardDuty without GuardDuty Experience
Hi all I've configured Cognito to remember devices and allow device auth (DEVICE_SRP_AUTH) once an initial login **with** email MFA has occurred. What I'd now like to do is use adaptive authenticati...
0
answers
0
votes
14
views
asked 2 months ago
Unlock the power of Amazon GuardDuty with the new guide on conducting a successful Proof of Concept (PoC). GuardDuty is AWS's intelligent threat detection service that provides managed, centralized se...
Is there any way to enable guard duty's S3 protection for only some buckets? As an example I have a bucket that stores company logos and profile pictures. I don't want all these access events monitor...
2
answers
0
votes
790
views
asked 6 months ago
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
2
answers
0
votes
474
views
asked a year ago
In the Windows log, I noticed an error 36874; "An TLS 1.2 connection request was received from a remote client application, but none of the cipher suites supported by the client application are suppor...
1
answers
0
votes
783
views
asked a year ago
When I signed up for AWS there was already configurations that were being used that I did not set up at all, I had never used the service before. There was Kubernetes, Lambda, VPC set up and activate...
1
answers
0
votes
298
views
asked a year ago
Hi Team, Im aware Guardduty is used for threat detection based on the API calls. Im struck where not all logs are appearing in the Guardduty. I have a control tower setup with organization enabled wh...
2
answers
0
votes
354
views
asked 2 years ago
Our company is considering purchasing a partner threat list for GuardDuty to generate additional findings. What has been others experience with that? Is the default Amazon threat list good enough? ...
1
answers
0
votes
433
views
asked 2 years ago
Someone pointed Nessus at my EC2 machine and performed a 12minute vunerability scan - Their IP traces back to AWS - There are more than 200 entries across all logs in /var/log/httpd. I believe my serv...
2
answers
0
votes
347
views
asked 3 years ago
Hello All, Does anyone experience False Positives with GuardDuty? If yes, what do you do to tune or update false positive findings? What options do customers have? Recently, i've notice a lot o...
1
answers
0
votes
1.1K
views
asked 3 years ago
  • 1
  • 12 / page