Questions tagged with Amazon GuardDuty
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello everyone,
I want to build a lab environment, where I have a simulated Security Operations Center with some vulnerable EC2 instances like Workstations or Windows/Linux Servers.
Furthermore I...
3
answers
0
votes
304
views
asked 8 months agolg...
Hi.
I have some questions:
1.I have enabled GuardDuty in my Organization with Control Tower. About findings I see this: "Findings are automatically sent to EventBridge. You can also export findings...
1
answers
0
votes
244
views
asked 8 months agolg...
Hi Team.
I have implemented Control Tower, Controls (Guardrails) and Conformance Packs for all accounts. After that, I received many sns notifications from email audit account.
I understand that I...
1
answers
0
votes
310
views
asked 8 months agolg...
Amazon GuardDuty IP Block List Automation - Implement periodic logging of the current Block Listlg...
Hi AWS team,
We’re a small company building out our infrastructure on AWS and recently implemented most of the automations detailed in the following AWS Blog Post: [How to use Amazon GuardDuty and...
1
answers
0
votes
262
views
asked 9 months agolg...
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
2
answers
0
votes
312
views
asked 9 months agolg...
I used "Generates sample findings" in GuardDuty settings to test the integration with AWS Security Hub and the SNS notifications configuration.
It works great, but now I have a long list of findings...
Accepted AnswerAmazon GuardDuty
4
answers
0
votes
890
views
asked 9 months agolg...
Hi yall,
we actually try this solution: https://aws.amazon.com/es/blogs/security/how-to-use-amazon-guardduty-and-aws-waf-v2-to-automatically-block-suspicious-hosts/
but during the deployment appear...
3
answers
0
votes
337
views
asked 10 months agolg...
Regarding Guard Dutylg...
I have followed document and tried to configure the guard duty service for forwarding the logs to s3 bucket, everythings seems well but logs are not getting stored in bucket. Need help.
1
answers
0
votes
281
views
asked 10 months agolg...
How can I go about getting ALL of the detectors that are enabled in my environment?
2
answers
0
votes
363
views
asked a year agolg...
My instance only opens external access network traffic to certain specific ip and ports, but this alarm will still appear
Findings:
Malware scan
Scan ID
d954e9ec99318c5df6946cc3ece1db32
Scan...
1
answers
1
votes
1740
views
asked a year agolg...
I wrote a code with nodejs which uses createIntelSet method.
but It throws Error below:
InternalServerErrorException: The request is rejected because the caller is not authorized to call this API.
I...
1
answers
0
votes
270
views
asked a year agolg...
Hi Team.
My ec2 instance instance is often communication with public DNS resolvers (google, azure, Cloudflare) instead of AWS VPC's DNS resolver.
EC2 instance's Network settings are set to automatic...
3
answers
0
votes
696
views
asked a year agolg...