Monday 7 October 2024

Detective LAB

 

1. Enable Detective

  • Navigate to the Detective console: In the AWS Management Console, search for "Detective" and select the Detective service.
  • Enable Detective:
     Click on "Enable Detective".
    • Image of enabling Detective in the AWS Management Console

2. Create a Behavior Graph

  • Create a behavior graph: Click on "Create behavior graph".
  • Name your behavior graph: Give your behavior graph a unique name.
  • Choose a region: Select the region where you want to create your behavior graph.
  • Create the behavior graph: Click on "Create behavior graph".
    • Image of creating a behavior graph in the AWS Detective console

3. Analyze Your Data

  • Analyze your data: Detective will automatically analyze your logs and identify potential security threats.
  • View anomalies: Review the anomalies identified by Detective.
    • Image of viewing anomalies in the AWS Detective console

4. Investigate Anomalies

  • Investigate anomalies: Use the Detective console to investigate the identified anomalies and determine if they pose a security threat.
    • Image of investigating anomalies in the AWS Detective console

5. Take Action

  • Take action: If an anomaly is confirmed to be a security threat, take appropriate action to mitigate the risk.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)