Best practice rules for Amazon GuardDuty
- AWS GuardDuty Configuration Changes
GuardDuty configuration changes have been detected within your Amazon Web Services account.
- Enable Malware Protection
Ensure that Amazon GuardDuty detectors are configured to use Malware Protection.
- Enable Malware Protection for Amazon EC2
Ensure that Amazon GuardDuty detectors are configured to use Malware Protection for EC2.
- Enable Malware Protection for Amazon S3
Ensure that Amazon GuardDuty detectors are configured to use Malware Protection for S3.
- Enable S3 Protection
Ensure that Amazon GuardDuty detectors are configured to use S3 Protection.
- GuardDuty Enabled
Ensure Amazon GuardDuty is enabled to help you protect your AWS accounts and workloads against security threats.
- GuardDuty Findings
Ensure that Amazon GuardDuty findings are highlighted, audited and resolved.