Streamline GuardDuty incident response by defining playbook logic once in YAML and compiling it to multiple automation platforms.
Cloud security labs: DFIR, detection engineering, and SecOps across Azure Sentinel, AWS GuardDuty, and Entra ID
AWS DevSecOps project implementing automated cloud security and compliance using AWS Config, Lambda, EventBridge, and GuardDuty.
Community-maintained GuardDuty finding remediation playbooks in vendor-neutral YAML, with converters for Tines, Python runbooks, and AWS Step Functions
Event driven AWS security automation platform GuardDuty threat detection, Security Hub (CIS 1.4 + PCI DSS), Inspector v2, Macie, and IAM Access Analyzer feeding EventBridge rules that trigger Lambda auto remediation: EC2 isolation, IAM credential revocation, malicious IP blocking (WAFv2 + NACL), and S3 hardening. Full audit trail in DynamoDB.
Hands-on AWS Cloud Support labs: EC2, S3, Lambda, IAM, GuardDuty, CloudWatch, incident response, automation, and CloudOps troubleshooting
“AWS CloudOps & IT Support | Hands-On Projects with EC2, S3, VPC, Python, Terraform & CloudFormation – Skills & Learning Journey
Production-ready Terraform modules for AWS security services (CloudTrail, GuardDuty, Security Hub, Config, Detective, Inspector, Macie, Access Analyzer)
AWS Account Security Baseline (CloudTrail, GuardDuty, MFA, Alerts) – reproduzierbarer Mindest-Sicherheitsstandard per Terraform & Python
Keep secure your Bastion Host from unauthorized login attempts automatically.
An open-source toolkit for automating security incident response in Amazon EKS (Elastic Kubernetes Service) clusters. This project helps security and DevSecOps teams detect, contain, and remediate threats in real-time with minimal manual intervention.eks-security-automation-demo
Automated AWS Organizations configuration for security operations
Automated Amazon GuardDuty Security Response
Perform file-based malware scan on your on-prem servers with AWS
A Step Functions microservice for remediating GuardDuty findings.
Advanced AWS Security Automation Resources: Used by Udemy Course 🎓
Update AWS GuardDuty threat intel list using AWS Lambda.
Go straight from Guard Duty alerts to Automated Investigations in AWS with Cado Response
Add a description, image, and links to the guardduty topic page so that developers can more easily learn about it.
To associate your repository with the guardduty topic, visit your repo's landing page and select "manage topics."