Server Guard enhances the security of Elastic Compute Service (ECS) instances by offering features like vulnerability management, baseline checks, intrusion detection, and asset management. This module employs operations such as log monitoring, file analysis, and signature scanning to safeguard ECS instances.
Conducts security baseline checks for ECS instances to ensure compliance with enterprise server security standards.
Scans ECS instances for software vulnerabilities, provides suggestions for fixes, and offers quick solutions for critical vulnerabilities.
Identifies and removes web shells based on specified rules, allowing manual quarantine.
Detects and blocks brute-force attacks in real-time by monitoring system activity for suspicious behavior.
Identifies unusual logons based on approved logon settings and generates alerts.
Detects suspicious activities such as reverse shells, Java processes running CMD commands, and unusual file downloads.
Collects up-to-date information about servers for event tracking, including ports, accounts, processes, and applications.
Centrally manages server logs for processes, networks, and system logins, aiding issue resolution.
Automatically collects diverse log data from cloud services, enabling control over identified security threats.
Security Center is compatible with multiple operating systems (OSs), Centralized control: You can view information and perform operations in the unified web console.
Support proactive detection and termination of various threats, including ransomware, mining programs, backdoors, worms, and trojans.
Automatically traces the sources and causes of attacks, providing insights into intrusion threats for quick responses.