深入了解 Amazon GuardDuty 扩展威胁检测 [重复].pdf

《深入了解 Amazon GuardDuty 扩展威胁检测 [重复].pdf》由会员分享，可在线阅读，更多相关《深入了解 Amazon GuardDuty 扩展威胁检测 [重复].pdf（23页珍藏版）》请在三个皮匠报告上搜索。

1、 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.S E C 3 2 1-RThe magic behind Amazon GuardDutyExtended Threat DetectionAldrin DSouzaHe/HimPrincipal EngineerAmazon GuardDutyJeffrey BickfordHe/HimSenior Security Eng

2、ineering ManagerAmazon GuardDuty 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.AgendaAmazon GuardDuty Protection PlansExtended Threat DetectionAttack SequencesDiscussion 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Amazon GuardDutyDetection powered by machi

3、ne learning and threat intelligenceOne-step activation across your AWS organizationThreat Intelligence from AWS and leading third partiesContinuous monitoring of AWS accountsA continuous security monitoring service 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.FoundationCompute

4、DataProtection PlansCloudTrail Management EventsRoute53 DNS Resolver LogsVPCFlow LogsEC2ECSEKSLambdaNetwork LogsEKS Audit LogsRuntime MonitoringAlways ActiveOptionalRDS Login EventsS3Data EventsEBSVolumesMalwareScansOptionalSee AWS Security Blog Post-Navigating Amazon GuardDuty Protection Plans 2025

5、,Amazon Web Services,Inc.or its affiliates.All rights reserved.186 Findings7 Protection Plans5 Attack SequencesFinding TypesExtendedThreat Detection See documentation:GuardDuty finding types 2025,Amazon Web Services,Inc.or its affiliates.All rights reserved.Extended Threat DetectionNo Configuration

6、or Additional CostAutomatically detects multi-stage attacks that span data sources,multiple types of AWS resources,and time,within an AWS accountPost Detection AnalyticsAnalyze findings to produce CRITICAL severity Attack Sequences that help you prioritize the most actionable threatsExtends,does not