Please enable JavaScript.
Coggle requires JavaScript to display documents.
Security Services - Coggle Diagram
Security Services
Shield Standard :shield:
Enabled for all Customers
Free service
Protects from DDoS, SYN/UDP
Layer 3/4 attacks
Reflection attacks
integrate with WAF :walking:
Advanced Shield :shield:
3000$ per month per org
24/7 support to DDoS response team
Any lost incurred bare by AWS
Protects many services by AWS
Protects all kinds of DDoS attacks
WAF
Web Application Firewall
Protects from Layer 7 (HTTP)
Deploy on
Load Balancer
API Gateway
CloudFront
Define Web ACLs
IP Address
HTTP Body
Headers
URI Strings
SQL Injection
XSS
geo-match
Block countries
Rate based rules
count occurrences of DDoS
no 5 req's/sec :information_desk_person:
Inspector
N/W Conf reachability
ports reachability from outside VPC
Vulnerabilities in S/W
Amazon Agent
Assessment
GuardDuty
Run independently
Uses ML
Checks malicious IPs
Events analysis
CloudTrail Events
VPC Flow logs
CloudTrail S3 data events
DNS Logs
K8 audit logs