- 최신
- 최다 투표
- 가장 많은 댓글
I think you need to define and build an IDS system in this case. You can’t just rely on AWS services for this type of stuff.
You may need to implement something like VPC mirroring with a 3rd party system and have your website logs sent to a SIEM for analysis.
Hello.
I believe GuardDuty can be used to detect unauthorized logins to RDS.
https://docs.aws.amazon.com/guardduty/latest/ug/rds-protection.html
https://docs.aws.amazon.com/guardduty/latest/ug/findings-rds-protection.html
GuardDuty can also link events to Amazon EventBridge.
So it is possible to have linked events notified via SNS to e-mail or other means.
https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_findings_cloudwatch.html
Thank you very much for your answer
AWS Config can send an alert via SNS when a change is made to the AWS configuration that breaches a compliance rule https://docs.aws.amazon.com/config/latest/developerguide/notifications-for-AWS-Config.html
관련 콘텐츠
- AWS 공식업데이트됨 일 년 전
- AWS 공식업데이트됨 2년 전
Thank you very much for your answer
Thank you very much for your answer