AWS GuardDuty and CloudSploit Events are complementing services. AWS GuardDuty provides machine-learning-based predictions of activity within an AWS account to detect malicious activity. CloudSploit Events provides analysis of the same events to compare against security best practices and known attack patterns. By way of example, GuardDuty may detect EC2 instances being launched to mine cryptocurrency based on network calls, while CloudSploit Events may detect that a known user launched a new EC2 instance with insecure security groups.
How is Events different from AWS GuardDuty? Print
Created by: Matt Fuller
Modified on: Sun, 10 Nov, 2019 at 11:51 AM
Did you find it helpful? Yes No
Send feedbackSorry we couldn't be helpful. Help us improve this article with your feedback.