From the course: AWS Administration: Security Operations
Unlock the full course today
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Monitor activity with GuardDuty - Amazon Web Services (AWS) Tutorial
From the course: AWS Administration: Security Operations
Monitor activity with GuardDuty
- [Instructor] One of the big changes you're starting to see with Amazon is the combination of jobs or tasks by larger services. GuardDuty is one of these services which allows you to turn over control of specific logs to GuardDuty to do continual analysis. You probably heard the term of machine learning which really means, a ton of compute power and because there's so much massive compute power, we can carry out millions upon millions of permutations looking at the data in many different ways. So what sort of data we're using to actually perform this GuardDuty analysis? Well we'll get to that but Amazon relies on their knowledge and some third-party companies to actually provide the baseline of information to do an analysis against your logs. So it's called Intelligent Threat Detection and it's continually monitoring and protecting your AWS workloads. The logs it's going to look at are CloudTrail logs which, of course…
Contents
-
-
-
-
-
Understanding visibility and logging5m 41s
-
Monitor security with CloudTrail5m 5s
-
Demo: CloudTrail2m 52s
-
Challenge: Create a Custom Trail1m 1s
-
Solution: Create a Custom Trail2m 30s
-
CloudWatch5m 44s
-
CloudWatch Logs2m 14s
-
CloudWatch Events3m 47s
-
VPC Flow Logs3m 42s
-
Monitor activity with GuardDuty4m 57s
-
Manage security with ControlTower4m 41s
-
Lambda and Lambda functions3m 35s
-
Simple Notification Services3m 54s
-
Explore AWS Config3m 40s
-
Demo: Config2m 58s
-
-