AWS GuardDuty

GPTKB entity

Statements (25)
Predicate Object
gptkbp:instanceOf gptkb:cloud_service
gptkbp:alerts findings
gptkbp:detects malicious activity
unauthorized behavior
gptkbp:developedBy gptkb:Amazon_Web_Services
gptkbp:documentation https://docs.aws.amazon.com/guardduty/
gptkbp:foundIn port scanning
communication with known malicious IPs
credential compromise
unusual API calls
https://www.w3.org/2000/01/rdf-schema#label AWS GuardDuty
gptkbp:integratesWith gptkb:AWS_CloudTrail
gptkb:AWS_DNS_logs
gptkb:Amazon_VPC_Flow_Logs
gptkbp:launchDate 2017-11-28
gptkbp:provides threat detection
continuous security monitoring
gptkbp:regionAvailability most AWS regions
gptkbp:supports multi-account management
automated response
gptkbp:url https://console.aws.amazon.com/guardduty/
gptkbp:uses gptkb:machine_learning
anomaly detection
gptkbp:bfsParent gptkb:AWS_CloudFormation
gptkbp:bfsLayer 5