Questions tagged with Amazon GuardDuty
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I am trying to install the Guardduty security agent on my AWS Linux 2 ami.
I following the instructions on...
1
answers
0
votes
401
views
asked 4 months agolg...
Can you just use Guard Duty Runtime Monitoring for ECS? Or do you have to turn on some base level features of guard duty as well?
1
answers
0
votes
280
views
asked 4 months agolg...
I would like to take an IaaC approach to configuring GuardDuty to export its findings to a S3 bucket.
I've successfully managed to do this via button clicks in the console, examined the bucket policy...
1
answers
0
votes
304
views
asked 5 months agolg...
I have enabled Guard duty and changed the Finding publish frequency to 15 minutes. I have created a eventbridge rule to send me an email if there are any new findings.
There is one new finding...
2
answers
0
votes
273
views
asked 5 months agolg...
Hello team ,
How can we configure securityhub , cloudtrail , guardduty and config for the accounts I have provided via AFT ?
2
answers
0
votes
259
views
asked 5 months agolg...
Hi,
I set up an EKS cluster using an NLB. It's currently working fine but the security group creates rules that open some ports to internet. The instances behind the security group are being probed...
0
answers
0
votes
159
views
asked 5 months agolg...
Hello everyone,
I want to build a lab environment, where I have a simulated Security Operations Center with some vulnerable EC2 instances like Workstations or Windows/Linux Servers.
Furthermore I...
3
answers
0
votes
244
views
asked 5 months agolg...
Hi.
I have some questions:
1.I have enabled GuardDuty in my Organization with Control Tower. About findings I see this: "Findings are automatically sent to EventBridge. You can also export findings...
1
answers
0
votes
161
views
asked 6 months agolg...
Hi Team.
I have implemented Control Tower, Controls (Guardrails) and Conformance Packs for all accounts. After that, I received many sns notifications from email audit account.
I understand that I...
1
answers
0
votes
219
views
asked 6 months agolg...
Amazon GuardDuty IP Block List Automation - Implement periodic logging of the current Block Listlg...
Hi AWS team,
We’re a small company building out our infrastructure on AWS and recently implemented most of the automations detailed in the following AWS Blog Post: [How to use Amazon GuardDuty and...
1
answers
0
votes
191
views
asked 6 months agolg...
Per the recommendations from the Security pillar of a Well Architected Review conducted on our accounts, our company enabled Security Hub for a centralized view of security findings and Guard Duty for...
2
answers
0
votes
222
views
asked 6 months agolg...
I used "Generates sample findings" in GuardDuty settings to test the integration with AWS Security Hub and the SNS notifications configuration.
It works great, but now I have a long list of findings...
Accepted AnswerAmazon GuardDuty
4
answers
0
votes
582
views
asked 7 months agolg...