User Guides

AWS EC2 Tags

• AWS EC2 Tags Overview
• AWS EC2 Tags FAQ

AWS Fargate

• Distributed Cloud AIP Container Security Monitoring for AWS Fargate
• Install Distributed Cloud AIP Container Security Monitoring for AWS Fargate ECS
• Add Distributed Cloud AIP Container Security Monitoring for Fargate to Existing Kubernetes Deployment
• Distributed Cloud AIP AWS Fargate Commands
• Configure Fargate Task Definition with JSON Templates
• Troubleshoot Distributed Cloud AIP Container Security Monitoring for AWS Fargate

CloudTrail Alerting

• CloudTrail Ruleset Compliance Matrix
• CloudTrail FAQ & Troubleshooting Guide

Container Monitoring

• Docker FAQ & Troubleshooting Guide
• Secure Your AWS EKS Workload with Distributed Cloud AIP
• Secure Your AWS ECS Workload with Distributed Cloud AIP
• Search Using TTY

Data Portability

• Data Portability Overview
• Raw Event Format
• FAQ: Does data portability support CloudTrail events?
• FAQ: Can I use Amazon Key Management Service (KMS) Encryption with data portability?
• FAQ: Can I use Amazon S3 Object Lock with data portability?
• FAQ: What happens if something goes wrong with Distributed Cloud AIP's connection to my AWS S3 bucket?

EC2 Context Enrichment

• Cloud Provider Context Enrichment

File Integrity Monitoring

• Capabilities of File Integrity Monitoring
• File Path Pattern Matching for File Integrity Monitoring
• Create a File Integrity Rule
• Cloud Security File Monitoring Use Cases
• File Integrity Monitoring (FIM) Overview
• Create a File Integrity Monitoring Rule and Add a User-Specific Suppression

See all 10 articles

Host Intrusion

• Container Rulesets Compliance Matrix
• Create a Windows Host Rule
• Create a Linux Host Rule
• Create a Kubernetes Configuration Rule
• Create a Kubernetes Audit Rule
• Distributed Cloud AIP Threat Intelligence Best Practices

See all 12 articles

Legacy Threat Stack Single Sign-On (SSO)

• Configure SSO in Distributed Cloud AIP
• Configure a Distributed Cloud AIP Organization with AWS SSO
• Configure OneLogin SSO for Distributed Cloud AIP
• Configure Hard Session Timeout through OneLogin IdP SSO
• Configure Multi-Organization SSO Integration
• Add Users to SSO-Enabled Organizations

See all 8 articles

Linux Agent

• fanotify and inotify Watch Limitations in Linux Agent 3.2.0
• Deploy Distributed Cloud AIP Linux Agent 3.x Series
• Deploy Distributed Cloud AIP Linux Agent 2.x Series
• Distributed Cloud AIP Kubernetes Deployment
• Deploy the Distributed Cloud AIP Containerized Agent
• Linux Agent 3.x Series Commands

See all 19 articles

Vulnerability Assessment

• Vulnerability Assessment Feature Overview
• Suppress or Unsuppress Vulnerabilities
• Vulnerability Assessment FAQ
• FAQ: What Vulnerabilities support is offered for Amazon Linux 1 and 2?

Webhooks

• Alert Webhooks API
• Webhooks Setup
• Webhook Endpoints
• Webhooks Payloads
• Retries
• Security

Windows Agent

• Deploy Distributed Cloud AIP Windows Agent 2.x Series
• Windows Agent Permissions and Privileges
• Sysmon Events
• Windows Ruleset Compliance Matrix
• Windows Agent 2.x Series Commands

Linux Agent 1.x (Deprecated)

• Agent 1.x (Deprecated) Documentation
• Deploy Distributed Cloud AIP Linux Agent 1.x Series
• Upgrade Distributed Cloud AIP Agent 1.x Series
• Agent 1.x Series Commands