Answer-first summary for fast verification
Answer: AWS CloudTrail
AWS CloudTrail is designed to log all API calls made to AWS services, providing detailed records that can be crucial for root cause analysis during a security incident. CloudWatch is more focused on monitoring and alarms, AWS Config records configuration changes, and GuardDuty is an intrusion detection service.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
During a security incident, it is crucial to capture data for root cause analysis. Which AWS service would be most appropriate for capturing detailed logs of API calls made to AWS services, which could help in identifying the source of the compromise?
A
AWS CloudTrail
B
Amazon CloudWatch
C
AWS Config
D
Amazon GuardDuty
No comments yet.