Skip to content

Latest commit

 

History

History
25 lines (21 loc) · 786 Bytes

File metadata and controls

25 lines (21 loc) · 786 Bytes

AWS GuardDuty

  • Return to table of contents

  • Useful Links:

  • Exam Tips:

    • Basically just need to know that it exists and possible use case.
    • Need to know terms:
      • Accounts - Master accounts and members.
        • Cannot be both master and member.
        • Only be member of one GuardDuty master.
      • Trust IP list
        • Can do a trusted IP list - IPs that don't generate findings.
        • Single list per-region per-account.
      • Threat list:
        • Explicitly define know malicious IPs.
        • 6 lists per-region per-account.
    • Can monitor:
      • CloudTrails
      • Route 53
      • VPC FlowLogs
    • Does require service role permissions.