The Amazon GuardDuty security scan on Vectrix detects a variety of GuardDuty security issues in a connected AWS account that could be leaving you vulnerable. This includes new GuardDuty findings, GuardDuty misconfigurations, and other security issues.
Scan on-demand to detect active GuardDuty security issues that you have.
Monitor continuously to get alerted about new GuardDuty findings in the future.
Don't know how Amazon GuardDuty works? Read more below.
What this scan detects
New GuardDuty findings
Get alerted about newly identified GuardDuty findings to find out about anomalous activity that AWS has identified across your AWS account. Use Monitoring to receive this finding.
Modification of trusted IP lists and threat lists
Get alerted when GuardDuty trusted IP lists and threat lists are modified, which could indicate potential unauthorized activity in your AWS account. Use Monitoring to receive this finding.
Accounts with GuardDuty not enabled
Having an account with GuardDuty not enabled could be problematic as it presents the security risk of not identifying anomalous activity across your account and the regions you operate in.
Regions with GuardDuty not enabled
Having an AWS region with GuardDuty not enabled could be problematic as bad actors will often utilize otherwise-unused AWS regions to act maliciously in an undetected way. Having GuardDuty enabled in all regions can reduce the likelihood of this activity going undetected.