Question 94:
You have recently migrated your on-premises Datacenter to AWS. You have deployed applications in the EC2 instance launched within a VPC & are using S3 buckets for storing all data. At your on-premises location, you had built a customized tool that would log all activities made by users on servers, a notification service that will notify the Security Team of any changes made to server configuration and a tool to check unsecured ports on applications having risks of accessing from an external network. Security Chief is looking for similar tools that can meet these requirements in AWS infrastructure. Which of the following tools can be used to meet this requirement? (Select Three)
Answer options:
A.Use AWS Config to record API calls to AWS resources. B.Use AWS Config to track changes in resources with respect to configuration rules. C.Use AWS CloudTrail to record API calls to AWS resources. D.Use AWS CloudTrail to track changes in resources with respect to configuration rules. E.Use Amazon Inspector for security assessment for applications deployed on EC2 instance. F.Use Amazon GuardDuty for security assessment for applications deployed on EC2 instance.