Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

How do I enable Amazon GuardDuty Malware Production for Amazon S3 via Cloudformation or CDK

0

Good afternoon,

I note that the recently released Amazon GuardDuty feature of Malware Production for Amazon S3 can be enabled via the Console (https://docs.aws.amazon.com/guardduty/latest/ug/enable-malware-protection-s3-bucket.html). It also possible to enable this feature via Cloudformation or CDK?

Thxs in advance, Adrian

Topics
Management & GovernanceAWS Cloud Development Kit (CDK)StorageSecurity, Identity, & Compliance
Tags
AWS CloudFormationAWS Cloud Development Kit (CDK)Amazon GuardDutyAmazon Simple Storage Service
Language
English
asked 2 years ago1.7K views
1 Answer
0

Here is a link to the CloudFormation documentation for GuardDuty Malware Protection

https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-malwareprotectionplan.html

{
  "Type" : "AWS::GuardDuty::MalwareProtectionPlan",
  "Properties" : {
      "Actions" : CFNActions,
      "ProtectedResource" : CFNProtectedResource,
      "Role" : String,
      "Tags" : [ TagItem, ... ]
    }
}

In your case, you are wanting to protect S3 so the code would look like the following to specify the S3 Bucket.

{
  "Type" : "AWS::GuardDuty::MalwareProtectionPlan",
  "Properties" : {
      "Actions" : CFNActions,
      "ProtectedResource" : {
          "S3Bucket" : S3Bucket
      },
      "Role" : String,
      "Tags" : [ TagItem, ... ]
    }
}

Hope this helps!

AWS
EXPERT
answered 2 years ago
EXPERT
reviewed 2 years ago
  • Adrian
    2 years ago

    Cool. I'll give that a shot. Thxs

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content