Exam AWS Certified Cloud Practitioner CLF-C02 topic 1 question 393 discussion

Amazon Detective is the best service for conducting security investigations using machine learning to analyze log data from Amazon EC2 instances and other AWS resources.

Amazon Detective: 1.Investigate and quickly identify the root cause of potential security issues. 2.Automatically collect log data from your AWS resources and uses machine learning to help you visualize and conduct security investigations.

Amazon Detective: 1.Investigate and quickly identify the root cause of potential security issues. 2.Automatically collect log data from your AWS resources and uses machine learning to help you visualize and conduct security investigations.

https://docs.aws.amazon.com/detective/latest/userguide/what-is-detective.html I think the key is this: "Detective automatically collects log data from your AWS resources"

correct D: Amazon GuardDuty • Intelligent Threat discovery to protect your AWS Account • Uses Machine Learning algorithms, anomaly detection, 3rd party data

C: Amazon Detective A managed security service that helps security analysts investigate security issues. Detective can analyze security findings from multiple sources, including GuardDuty, to help identify the root cause of malicious activity. Detective provides interactive visualizations and insights to help users investigate issues more quickly. Amazon GuardDuty A threat detection service that continuously monitors AWS environments for unauthorized access and malicious activity. GuardDuty provides real-time alerts and detailed findings to help security teams respond to security incidents.

D Amazon GuardDuty

It's C : https://docs.aws.amazon.com/detective/latest/userguide/what-is-detective.html

Amazon GuardDuty Amazon GuardDuty is a threat detection service that continuously monitors, analyzes, and processes specific AWS data sources and logs in your AWS environment. GuardDuty uses threat intelligence feeds, such as lists of malicious IP addresses and domains, and machine learning (ML) models to identify unexpected, and potentially unauthorized activity in your AWS environment. This includes the following issues:

C. Amazon Detective Amazon Detective is a fully managed service that helps you to investigate potential security issues or suspicious activities across your AWS environment, including EC2 instances. It automatically collects log data from multiple AWS sources, such as VPC Flow Logs, CloudTrail, and GuardDuty findings, and uses machine learning, statistical analysis, and graph theory to build interactive visualizations and make it easier to identify security issues and conduct investigations.

C. Amazon Detective Amazon Detective makes it easy to analyze, investigate, and quickly identify the root cause of security issues or suspicious activities. It automatically collects log data from your AWS resources and uses machine learning, statistical analysis, and graph theory to build a linked set of data that enables you to easily conduct investigations. While Amazon GuardDuty is effective for detecting threats, Amazon Detective specializes in analyzing and investigating the security findings that GuardDuty and other services detect, making it an excellent choice for efficiently conducting security investigations with machine learning capabilities.