Wider attack surface coverage powered by hundreds of integrations and deeper threat visibility powered by thousands of detections.
Version: AWS Route 53.
AWS Route 53 is a highly available and scalable cloud Domain Name System (DNS) web service. It is designed to provide developers and businesses a way to route end users to Internet applications. AWS Route 53 is fully compliant with IPv6.
Netsurion's Open XDR platform assists in overseeing events from AWS Route 53, and its dashboard and reports aid in monitoring activities related to DNS queries. The AWS Route 53 dashboard enables users to view the most frequently queried domain and its responses, which is useful in detecting cache poisoning and other DNS-related attacks.
Dashboard displays the geolocation of the client and resolver, and the count of DNS queries done on per day basis to track DNS amplification attack. Dashboard can also help in tracking queries with multiple domain or lengthy domain, view query request volume based on record type. User can track high volume of request for specific record type.
Netsurion data source integration for AWS Route 53 allows you to monitor the following components:
Some of the Data Source Integrations available in Netsurion are listed below.
The configuration details are consistent with the Netsurion Open XDR platform version 9.2 and later, and AWS Route 53.
Download Integration Guide and How-to Guide for more information and to configuration instructions.