Skip to main content

aws.guardduty

Supported Platform

  • aws

Description

Amazon GuardDuty for threat detection

The aws.guardduty resource can be used to assess the configuration of the AWS GuardDuty service. The resource provides a list of aws.guardduty.detector resources representing GuardDuty Detectors deployed across all enabled regions.

Fields

IDTYPEDESCRIPTION
detectors[]aws.guardduty.detectorlist of guardduty detectors

Examples

Return a list of Amazon GuardDuty Detectors along with the values for specified fields

aws.guardduty.detectors {
id
region
status
findingPublishingFrequency
unarchivedFindings
}

Checks that guardduty is enabled in all regions

aws.guardduty.detectors.all(status == "ENABLED");

References