Amazon Detective
Use this page as a service-specific case-study starter for architecture, simulation, and optimization scenarios in pinpole.cloud.
Why this service matters
Amazon Detective analyzes and visualizes security data to investigate potential security issues.
Power:
- Automatically collects data from CloudTrail, VPC Flow Logs, GuardDuty, EKS audit logs
- ML-powered behavior graphs for investigation
- Cross-account investigation with Organizations
- No agents or additional data sources to configure
Important workflows
- Design - Configure service behavior for your workload.
Configuration sections
- Why Detective (Power + Limits)
- Detective Settings
Key configuration points
| Point | Default / Value | Category |
|---|---|---|
| Enabled | true | Detective Settings |
| CloudTrail Logs | true | Detective Settings |
| VPC Flow Logs | true | Detective Settings |
| EKS Audit Logs | false | Detective Settings |
| Organization Integration | false | Detective Settings |