Amazon GuardDuty

Protect your AWS accounts with intelligent threat detection

Start your 30-day free trial

with the AWS Free Tier

Continuously monitor your AWS accounts, instances, container workloads, users, databases, and storage for potential threats.

Expose threats quickly using anomaly detection, ML, behavioral modeling, and threat intelligence feeds from AWS and leading third-parties.

Mitigate threats early by initiating automated responses.

Expose threats quickly using anomaly detection, machine learning, behavioral modeling, and threat intelligence feeds from AWS and leading third-parties.

How it works

Amazon GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity and delivers detailed security findings for visibility and remediation.

Use cases

Improve security operations visibility

Gain insight of compromised credentials, unusual data access in Amazon Simple Storage Service (S3), suspicious logins in Amazon Aurora (Preview), and API calls from known malicious IP addresses.

Assist security analysts in investigations

Receive security event findings with context, metadata, and impacted resource details, and determine their root cause using GuardDuty console integration with Amazon Detective.

Identify files containing malware

Scan Amazon Elastic Block Store (EBS) for files that might have malware creating suspicious behavior on instance and container workloads running on Amazon Elastic Compute Cloud (EC2).

Route insightful information on security findings

Route findings to your preferred operational tools using integrations with AWS Security Hub and Amazon EventBridge.

How to get started

Watch a brief introductory video

Learn how easy it is to add and use GuardDuty to help detect potential security issues in your AWS deployments.

Check out the video »

Explore GuardDuty features

GuardDuty is a threat detection service that provides you with an accurate and easy way to continuously monitor and protect AWS accounts and workloads.

Learn more »

Begin a 30-day free trial

Try GuardDuty for 30 days at no cost. You will receive full access to GuardDuty features and its detection findings during the free trial.

Free trial »

Explore more of AWS