[FEATURE] Improvements to the GuardDuty Solution

aws-samples / aws-security-reference-architecture-examples

Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.

Other

977 stars 244 forks source link

[FEATURE] Improvements to the GuardDuty Solution #107

Closed AdamDivall closed 1 year ago

AdamDivall commented 2 years ago

I've been reviewing the configurations of GuardDuty following a base deployment on top of Control Tower and have noticed that there is no configuration option within the Current Automation to Enable EKS Audit Logs or the New Malware Protection option.

Would be extremely useful for these aspects to be added in longer term.

Thanks in Advance.

andywick-aws commented 2 years ago

Thank you for the feature request @AdamDivall. We will add these 2 items to our backlog.

AdamDivall commented 2 years ago

@andywick-aws Another thing in relation to the EKS Audit Logs being enabled would be to be able to integrate it with Amazon Detective as per the Blog Post

liamschn commented 1 year ago

Hello @AdamDivall these plus other guardduty features have been added. See https://github.com/aws-samples/aws-security-reference-architecture-examples/commit/97e9968a2e6011f6919c02083f6220bde89c802e