Feature/Service Amazon Detective Amazon GuardDuty Amazon Inspector AWS Security Hub Purpose Security investigation and analysis tool Threat detection and continuous security monitoring Vulnerability scanning and assessment of EC2 instances and containers Centralized security management and compliance monitoring Primary Function Helps investigate and analyze security findings from multiple data sources Detects malicious or unauthorized activity within…
Category: aws
AWS Firewall Manager
AWS Firewall Manager is a security management service offered by AWS that allows you to centrally configure and manage firewall rules across your AWS environment. It’s primarily used to manage and enforce security policies across multiple accounts, regions, and VPCs (Virtual Private Clouds) within an AWS Organization. Key Features: Centralized Firewall Management: You can create…
AWS Network Firewall
AWS Network Firewall is a managed, flexible, and scalable firewall service designed to provide network traffic filtering for Amazon Virtual Private Cloud (VPC). It helps protect your VPCs and applications by controlling both inbound and outbound traffic. AWS Network Firewall is integrated with other AWS security services, enabling you to build a comprehensive security posture…
AWS Shield
WS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS from network and application layer attacks. AWS Shield helps protect applications against the most common types of DDoS attacks, ensuring that your applications remain available and performant even during large-scale attacks. AWS Shield offers two levels of…
AWS WAF
AWS WAF is a managed web application firewall service that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. It allows you to create custom security rules to block or allow traffic based on specific conditions, such as IP addresses, HTTP headers, request body,…
AWS Security Token Service
AWS Security Token Service (STS) is a web service that allows you to request temporary, limited-privilege credentials for AWS services. These credentials are typically used to authenticate users or services for a specific period of time, allowing them to access AWS resources securely without using long-term IAM credentials. STS helps manage and secure access to…
AWS Identity Center
AWS Identity Center (formerly AWS Single Sign-On) is a service that enables centralized identity and access management across multiple AWS accounts and cloud applications. It provides a way to manage user authentication, authorization, and access control efficiently. Key Features of AWS Identity Center: Common Use Cases: AWS Identity Center consists of several key components that…
AWS IAM
AWS Identity and Access Management (IAM) is a web service that helps you securely manage access to AWS resources. IAM enables you to create and manage users, groups, and permissions, allowing you to control access to AWS services and resources in a secure and flexible manner. Key Features of AWS IAM: User and Group Management:…
Amazon SageMaker
Amazon SageMaker is a fully managed service provided by AWS that enables developers and data scientists to quickly build, train, and deploy machine learning (ML) models at scale. It provides a broad set of tools and capabilities that streamline the machine learning workflow, making it easier to develop and deploy ML solutions, from data processing…
CloudSearch vs OpenSearch
Feature Amazon CloudSearch Amazon OpenSearch Core Use Case Simple search use cases (e-commerce, content, logs) Complex search and analytics (logs, metrics, BI, APM) Customizability Limited customization Full customization (advanced ranking, scoring) Search Features Full-text, faceted search, geo-spatial search Full-text, faceted, geo-spatial, advanced querying, analytics Machine Learning Integration No ML features Supports ML (e.g., anomaly detection,…