Checks/Aws/Test-GuarddutyEc2MalwareProtectionEnabled.ps1
|
function Test-GuarddutyEc2MalwareProtectionEnabled { <# .SYNOPSIS GuardDuty detector has Malware Protection for EC2 enabled .DESCRIPTION **GuardDuty detectors** with **Malware Protection for EC2** enabled perform agentless scans of EBS volumes attached to **EC2 instances** and container workloads. Scans can be triggered by suspicious activity or run on-demand to identify malicious files within restored volume snapshots. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: guardduty_ec2_malware_protection_enabled [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check guardduty_ec2_malware_protection_enabled for reference.', 'N/A', 'guardduty Resources') } |