GuardDuty Detector Disabled

  • Query id: 704dadd3-54fc-48ac-b6a0-02f170011473
  • Query name: GuardDuty Detector Disabled
  • Platform: Terraform
  • Severity: Medium
  • Category: Observability
  • CWE: 778
  • URL: Github

Description

Make sure that Amazon GuardDuty is Enabled
Documentation

Code samples

Code samples with security vulnerabilities

Positive test num. 1 - tf file
resource "aws_guardduty_detector" "positive1" {
  enable = false
}

Code samples without security vulnerabilities

Negative test num. 1 - tf file
resource "aws_guardduty_detector" "negative1" {
  enable = true
}