Questions tagged with Amazon GuardDuty
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I am using AWS GuardDuty integration to Slack.
Integration works like this, Cloudwatch Event --> SNS --> Lambda --> Slack.
Last week I got an alert for one finding and I did take action on that. But...
1
answers
0
votes
421
views
asked a year agolg...
Hi, all,
New to the community so will do my best to follow the dos and don't but a bit of a AWS novice so bear with me.
It was noticed that the new "Malware Protection" trial had started in our AWS...
1
answers
0
votes
316
views
asked 2 years agolg...
Hi,
AWS Guardduty is reporting: "ec2 instance is communicating with a remote host on an unusual server port 43582" from and EC2 instance that does not exist. We have autoscaling group that terminates...
2
answers
0
votes
1187
views
asked 2 years agolg...
Hi,
We're going through an Audit (It is my first year at this company) and I'm trying to find evidence, if we have any, that we monitor for data exfiltration attempts specifically (or other intrusion...
1
answers
0
votes
794
views
asked 2 years agolg...
We enabled GuardDuty at the Org-level and delegated the primary/management Account. However, in the GD console at the delegated account, the primary/management Account isn't listed. It seems as though...
1
answers
0
votes
447
views
asked 2 years agolg...
Hi All,
Ive a quick question re: the timings of findings being generated and being accessible in AWS Security Hub via GuardDuty.
Without giving away the trade secrets, Im guessing there various step...
1
answers
0
votes
383
views
asked 2 years agolg...
Hello All,
I am getting below error while am trying to disable guard duty. I have disassociated all member accounts under account tab but the error would still remain. Can anyone help with...
1
answers
0
votes
1757
views
asked 2 years agolg...
My requirement is to transfer the Guardduty finding of Account A to the S3 Bucket of Account B
I follow the guide https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_exportfindings.html
but got...
2
answers
0
votes
918
views
asked 2 years agolg...
We have an AWS Organization, designated an account for Security where we have enable GuardDuty and works fine. Today we wanted to enable the new capability of Malware Protection but when trying to...
1
answers
0
votes
1869
views
asked 2 years agolg...
Our company is considering purchasing a partner threat list for GuardDuty to generate additional findings. What has been others experience with that? Is the default Amazon threat list good enough? ...
1
answers
0
votes
350
views
asked 2 years agolg...
How do I find the quantity of EKS Audit Logs across multiple accounts (100's) to price GuardDuty as accurately as possible?
1
answers
0
votes
297
views
asked 2 years agolg...
From GuardDuty we get notifications about modifications to S3 buckets in the...
1
answers
0
votes
527
views
asked 2 years agolg...