Amazon Detective is a security service on AWS that enables customers to analyze, investigate, and quickly identify the root cause of potential security issues or suspicious activity. AWS recently announced the extension of Amazon Detective to Kubernetes workloads on Amazon’s Elastic Kubernetes Service (EKS).
The announcement was made during the annual AWS re:Inforce conference, where the company keeps the world and its attendees updated on developments in cloud security and related topics. The company first rolled out the service in March 2020 — a service that continuously examines things like login attempts, API calls, and network traffic from Amazon GuardDuty, AWS CloudTrail, and Amazon Virtual Private Cloud (Amazon VPC) flow logs.
After its initial release, the company updated the service with features such as AWS IAM role session analysis, advanced IP address analysis, Splunk integration, Amazon S3 and DNS lookup types, and support for AWS…