Properties (49)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:Cloud_Computing_Service
|
| gptkbp:analyzes |
AWS_CloudTrail_logs
VPC_Flow_Logs DNS_logs |
| gptkbp:can_be |
automated responses
|
| gptkbp:compatibleWith |
various security standards
|
| gptkbp:enables |
gptkb:AWS_Management_Console
gptkb:AWS_CLI AWS_SDKs |
| gptkbp:engineConfiguration |
send notifications
create_CloudWatch_alarms |
| https://www.w3.org/2000/01/rdf-schema#label |
Amazon GuardDuty
|
| gptkbp:includes |
incident response
|
| gptkbp:integratesWith |
gptkb:AWS_CloudWatch
gptkb:AWS_Security_Hub |
| gptkbp:is |
managed service
|
| gptkbp:is_accessible_by |
gptkb:API
|
| gptkbp:is_available_in |
free tier usage
multiple_AWS_regions |
| gptkbp:is_designed_to |
security teams
reduce false positives |
| gptkbp:is_integrated_with |
third-party security tools
|
| gptkbp:is_part_of |
gptkb:AWS_shared_responsibility_model
AWS_security_best_practices AWS_security_services |
| gptkbp:is_used_in |
gptkb:AWS_Lambda
organizations worldwide enhance security posture monitor compliance |
| gptkbp:isUpdatedBy |
AWS_security_researchers
|
| gptkbp:offers |
custom threat lists
detection of account compromise detection of compromised instances detection of reconnaissance activities |
| gptkbp:performance |
large environments
|
| gptkbp:provides |
real-time monitoring
security alerts threat detection detailed findings contextual information |
| gptkbp:recognizes |
malicious activity
unauthorized behavior |
| gptkbp:requires |
AWS_account
|
| gptkbp:suitableFor |
cloud environments
AWS_users |
| gptkbp:supports |
multi-account environments
|
| gptkbp:uses |
machine learning
threat intelligence anomaly detection |