All Content tagged with Threat Detection
Content language: English
Select up to 5 tags to filter
Sort by most recent
9 results
EXPERT
published 23 days ago1 votes100 views
Is there any way to enable guard duty's S3 protection for only some buckets?
As an example I have a bucket that stores company logos and profile pictures. I don't want all these access events...
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
In the Windows log, I noticed an error 36874;
"An TLS 1.2 connection request was received from a remote client application, but none of the cipher suites supported by the client application are...
When I signed up for AWS there was already configurations that were being used that I did not set up at all, I had never used the service before. There was Kubernetes, Lambda, VPC set up and...
Hi Team,
Im aware Guardduty is used for threat detection based on the API calls.
Im struck where not all logs are appearing in the Guardduty.
I have a control tower setup with organization enabled...
Our company is considering purchasing a partner threat list for GuardDuty to generate additional findings. What has been others experience with that? Is the default Amazon threat list good enough? ...
Someone pointed Nessus at my EC2 machine and performed a 12minute vunerability scan - Their IP traces back to AWS - There are more than 200 entries across all logs in /var/log/httpd. I believe my...
Hello All,
Does anyone experience False Positives with GuardDuty? If yes, what do you do to tune or update false positive findings? What options do customers have?
Recently, i've notice a lot...