What is the primary use case for Amazon GuardDuty?

Explanations:

Amazon GuardDuty does not specifically prevent DDoS attacks; it is primarily a threat detection service. DDoS prevention is typically managed by AWS Shield.

GuardDuty is not focused on SQL injection attacks. It monitors AWS account and workload activity to identify potential security threats, rather than providing specific protection against web application vulnerabilities like SQL injection.

Amazon GuardDuty is designed for automatic monitoring and detection of threats to AWS workloads. It analyzes data from various sources to identify malicious or unauthorized behavior.

GuardDuty does not provision AWS resources automatically. Its main function is to provide security insights and threat detection, not resource management.