Which AWS service should the company use?
Amazon GuardDuty
AWS WAF
AWS Trusted Advisor
Amazon Inspector
Explanations:
Amazon GuardDuty is a threat detection service that monitors AWS accounts and workloads for malicious or unauthorized behavior. While it helps in identifying security threats, it does not specifically provide protections against web application vulnerabilities like SQL injection or cross-site scripting.
AWS WAF (Web Application Firewall) is specifically designed to protect web applications from common web exploits such as SQL injection and cross-site scripting. It allows users to create custom rules to block or allow web traffic based on specified criteria, making it the ideal choice for safeguarding the website.
AWS Trusted Advisor is a service that provides real-time guidance to help users provision their resources following AWS best practices. While it offers recommendations for cost optimization, performance, security, and fault tolerance, it does not provide direct protection against web vulnerabilities.
Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. It assesses applications for vulnerabilities but does not specifically provide protections against SQL injection or cross-site scripting, making it unsuitable for this specific use case.