{"id":3588,"date":"2025-01-21T18:15:35","date_gmt":"2025-01-21T18:15:35","guid":{"rendered":"http:\/\/www.sumologic.com\/?post_type=integration&#038;p=3588"},"modified":"2025-05-08T19:34:14","modified_gmt":"2025-05-09T03:34:14","slug":"aws-guardduty","status":"publish","type":"integration","link":"https:\/\/www.sumologic.com\/app-catalog\/aws-guardduty","title":{"rendered":"AWS GuardDuty App"},"content":{"rendered":"\n<section class=\"e-stn e-stn-13e5ec56a93c6e9ff696022a277c755930439ace e-stn--dynamic-grid-section e-mt-0 e-mb-0\"><div class=\"container\">\n<div class=\"wp-block-b3rg-row e-row row justify-content-center\">\n<div class=\"wp-block-b3rg-column e-col e-col-6d13f63c1c4bb04cc134dcdc330878d4c6329f11  col-sm-7\">\n<h2 class=\"wp-block-heading has-text-align-center has-gunmetal-color has-text-color has-link-color wp-elements-b2397e617aa28c613659bfe6f9411bf8\" id=\"quickly-leverage-and-centralize-visibility-into-the-security-of-your-aws-environment\">Quickly leverage and centralize visibility into the security of your AWS environment<\/h2>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-b3rg-row e-row row e-row--dlt\">\n<div class=\"wp-block-b3rg-column e-col e-col-ee45c60426ca36375d91427eee6c079461041108  col-sm-4\">\n<div class=\"e-div e-div-3065aa63441b8fcc971ce24285003437e5014388\"><div class=\"e-img \">\n<figure class=\"wp-block-image size-large is-resized\"><img decoding=\"async\" src=\"http:\/\/www.sumologic.com\/wp-content\/uploads\/icon-valuable-security-insights.svg\" alt=\"\" class=\"wp-image-3802\" style=\"aspect-ratio:1;width:63px\" title=\"\"><\/figure>\n<\/div>\n\n\n<h3 class=\"wp-block-heading\" id=\"rapid-security-insights\">Rapid security insights<\/h3>\n\n\n\n<p>Gain rapid insights into the severity and frequency of GuardDuty findings for more rapid and effective remediation efforts.<\/p>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-b3rg-column e-col e-col-ee45c60426ca36375d91427eee6c079461041108  col-sm-4\">\n<div class=\"e-div e-div-3065aa63441b8fcc971ce24285003437e5014388\"><div class=\"e-img \">\n<figure class=\"wp-block-image size-large is-resized\"><img decoding=\"async\" src=\"http:\/\/www.sumologic.com\/wp-content\/uploads\/icon-troubleshoot-1.svg\" alt=\"\" class=\"wp-image-3590\" style=\"aspect-ratio:1;width:63px\" title=\"\"><\/figure>\n<\/div>\n\n\n<h3 class=\"wp-block-heading\" id=\"click-to-fix\">Click to fix<\/h3>\n\n\n\n<p>Simply click on any AWS GuardDuty finding from the Sumo Logic dashboard and instantly be routed to your AWS EC2 environment for rapid remediation efforts.<\/p>\n<\/div>\n<\/div>\n\n\n\n<div class=\"wp-block-b3rg-column e-col e-col-ee45c60426ca36375d91427eee6c079461041108  col-sm-4\">\n<div class=\"e-div e-div-3065aa63441b8fcc971ce24285003437e5014388\"><div class=\"e-img \">\n<figure class=\"wp-block-image size-thumbnail is-resized\"><img decoding=\"async\" src=\"http:\/\/www.sumologic.com\/wp-content\/uploads\/icon-advanced-search.svg\" alt=\"\" class=\"wp-image-3591\" style=\"aspect-ratio:1;width:63px\" title=\"\"><\/figure>\n<\/div>\n\n\n<h3 class=\"wp-block-heading\" id=\"granular-search-and-analytics\">Granular search and analytics<\/h3>\n\n\n\n<p>GuardDuty findings and raw log data can easily be filtered by &#8220;tags&#8221; for more granular search and detailed analysis. Search &#8220;Tag&#8221; types include User ID, Region, VPC, subnet, instance ID, ports, IPs, Principle ID, Access Key ID, etc.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div><\/section>\n\n\n\n<section class=\"e-stn e-stn-e991ab2267c941cd7e542d0c6858bc76fdadb860 e-stn--repeatable-content-cards e-mt-0 e-pt-30 e-mb-0 e-pb-30\"><style>@media only screen and (max-width: 9999px) {\n\t\t\t\t\t\t\t\t\t.e-stn.e-stn-e991ab2267c941cd7e542d0c6858bc76fdadb860 { \n\t\t\t\t\t\t\t\t\t\tbackground-color: #f8f8f8; \n\t\t\t\t\t\t\t\t\t}\n\t\t\t\t\t\t\t\t}<\/style><div class=\"container\">\n<div class=\"wp-block-b3rg-row e-row row\">\n<div class=\"wp-block-b3rg-column e-col e-col-57c18431eb2dd6d034c16281bbbb90b27babb5e6 e-col--content-wrapper  col-sm-12 col-lg-6\"><div class=\"e-img \">\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"974\" height=\"697\" src=\"http:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic.png\" alt=\"\" class=\"wp-image-3592\" title=\"\" srcset=\"https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic.png 974w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-300x215.png 300w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-768x550.png 768w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-575x411.png 575w\" sizes=\"auto, (max-width: 974px) 100vw, 974px\" \/><\/figure>\n<\/div><\/div>\n\n\n\n<div class=\"wp-block-b3rg-column e-col e-col-57c18431eb2dd6d034c16281bbbb90b27babb5e6 e-col--content-wrapper  col-sm-12 col-lg-6\">\n<h2 class=\"wp-block-heading\" id=\"pre-built-sumo-logic-guardduty-dashboards\">Pre-built Sumo Logic GuardDuty Dashboards<\/h2>\n\n\n\n<p>Sumo Logic provides a single pane of glass to reduce the complexity of managing multiple environments, with pre-configured, user friendly and customizable dashboards that take&nbsp;<a href=\"https:\/\/www.sumologic.com\/blog\/what-is-aws-guardduty\/\">GuardDuty\u2019s<\/a> linear data format and layers-on rich graphical reporting and depictions of trends over time.<\/p>\n<\/div>\n<\/div>\n<\/div><\/section>\n\n\n\n<section class=\"e-stn e-stn-efb28fde36310d8cb28353ad15e7e9c1df09193a e-stn--repeatable-content-cards e-mt-0 e-pt-30 e-mb-0 e-pb-30\"><div class=\"container\">\n<div class=\"wp-block-b3rg-row e-row row\">\n<div class=\"wp-block-b3rg-column e-col e-col-6e23960f93026a69260a54a644f2a4dbab6a8b2e e-col--media-wrapper  col-sm-12 col-lg-6\">\n<h2 class=\"wp-block-heading\" id=\"rapid-intelligent-threat-detection\">Rapid &amp; Intelligent Threat Detection<\/h2>\n\n\n\n<p>Complete visibility into the health and protection of your AWS environment through pre-built GuardDuty dashboards. Insightful graphic representation of the overall health of your deployment, to quickly spot, analyze and inspect any indications of non-standard security events.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>GuardDuty &#8220;findings&#8221; can be prioritized and customized for severity and risk.<\/li>\n\n\n\n<li>Monitor trends over time to better predict potential events before they occur.<\/li>\n\n\n\n<li>Simplify the management of your AWS environment with simple, &#8220;out-of-the box&#8221; dashboards that enrich and enhance GuardDuty analytics<\/li>\n\n\n\n<li>Simply &#8220;click to fix&#8221; with instant routing to your EC2 environment for remediation efforts needed.<\/li>\n\n\n\n<li>GuardDuty search tags allow for more granular investigation of events and findings, such as the IP address and geo-location of the attacker, for rapid isolation of events<\/li>\n<\/ul>\n<\/div>\n\n\n\n<div class=\"wp-block-b3rg-column e-col e-col-57c18431eb2dd6d034c16281bbbb90b27babb5e6 e-col--content-wrapper  col-sm-12 col-lg-6\"><div class=\"e-img \">\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"974\" height=\"424\" src=\"http:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-GuardDuty_AWS-Console.png\" alt=\"\" class=\"wp-image-3593\" title=\"\" srcset=\"https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-GuardDuty_AWS-Console.png 974w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-GuardDuty_AWS-Console-300x131.png 300w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-GuardDuty_AWS-Console-768x334.png 768w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-GuardDuty_AWS-Console-575x250.png 575w\" sizes=\"auto, (max-width: 974px) 100vw, 974px\" \/><\/figure>\n<\/div><\/div>\n<\/div>\n<\/div><\/section>\n\n\n\n<section class=\"e-stn e-stn-e991ab2267c941cd7e542d0c6858bc76fdadb860 e-stn--repeatable-content-cards e-mt-0 e-pt-30 e-mb-0 e-pb-30\"><style>@media only screen and (max-width: 9999px) {\n\t\t\t\t\t\t\t\t\t.e-stn.e-stn-e991ab2267c941cd7e542d0c6858bc76fdadb860 { \n\t\t\t\t\t\t\t\t\t\tbackground-color: #f8f8f8; \n\t\t\t\t\t\t\t\t\t}\n\t\t\t\t\t\t\t\t}<\/style><div class=\"container\">\n<div class=\"wp-block-b3rg-row e-row row\">\n<div class=\"wp-block-b3rg-column e-col e-col-57c18431eb2dd6d034c16281bbbb90b27babb5e6 e-col--content-wrapper  col-sm-12 col-lg-6\"><div class=\"e-img \">\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"2087\" height=\"1161\" src=\"http:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-details.png\" alt=\"\" class=\"wp-image-3594\" title=\"\" srcset=\"https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-details.png 2087w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-details-300x167.png 300w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-details-1024x570.png 1024w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-details-768x427.png 768w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-details-1536x854.png 1536w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-details-2048x1139.png 2048w, https:\/\/www.sumologic.com\/wp-content\/uploads\/dashboard-guardduty-sumologic-details-575x320.png 575w\" sizes=\"auto, (max-width: 2087px) 100vw, 2087px\" \/><\/figure>\n<\/div><\/div>\n\n\n\n<div class=\"wp-block-b3rg-column e-col e-col-57c18431eb2dd6d034c16281bbbb90b27babb5e6 e-col--content-wrapper  col-sm-12 col-lg-6\">\n<h2 class=\"wp-block-heading\" id=\"value-added-context-beyond-guardduty\">Value-added Context Beyond GuardDuty<\/h2>\n\n\n\n<p>The Sumo Logic GuardDuty App adds additional sources of analytics for deeper and wider visibility in the AWS environment and context across the organization including full stack visibility into application\/infra logs, Application\/Elastic Load Balancer (ALB\/ELB) performance, and supplemental threat intel provided by Crowdstrike for management of resources outside of AWS.<\/p>\n<\/div>\n<\/div>\n<\/div><\/section>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":4,"featured_media":3589,"template":"","meta":{"_acf_changed":false,"show_custom_date":false,"custom_date":"","featured":false,"featured_image":0,"learn_more_label":"","image_alt_text":"","learn_more_type":"","show_popup":false,"learn_more_link_file":0,"event_date":false,"event_start_date":"","event_end_date":"","place_holder_image_url":"","post_reading_time":"2","notification_enabled":false,"notification_text":"","notification_logo":"","notification_expiration_time":0,"is_enable_transparent_header":false,"selected_taxonomy_terms":{"integration-cloud-provider":[99],"integration-use-case":[71,73]},"selected_primary_terms":{"integration-cloud-provider":[],"integration-use-case":[]},"learn_more_link":[],"featured_page_list":[],"notification_enabled_post_list":[],"_gspb_post_css":"","_relevanssi_hide_post":"","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"11371,11363,11266","_relevanssi_noindex_reason":"","inline_featured_image":false,"footnotes":""},"integration-cloud-provider":[99],"integration-use-case":[71,73],"class_list":["post-3588","integration","type-integration","status-publish","has-post-thumbnail","hentry","integration-cloud-provider-amazon-web-services","integration-use-case-security","integration-use-case-operations"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/integration\/3588","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/integration"}],"about":[{"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/types\/integration"}],"author":[{"embeddable":true,"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/users\/4"}],"version-history":[{"count":4,"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/integration\/3588\/revisions"}],"predecessor-version":[{"id":17650,"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/integration\/3588\/revisions\/17650"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/media\/3589"}],"wp:attachment":[{"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/media?parent=3588"}],"wp:term":[{"taxonomy":"integration-cloud-provider","embeddable":true,"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/integration-cloud-provider?post=3588"},{"taxonomy":"integration-use-case","embeddable":true,"href":"https:\/\/www.sumologic.com\/wp-json\/wp\/v2\/integration-use-case?post=3588"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}