Quotas in Malware Protection for S3 - Amazon GuardDuty
Services or capabilities described in AWS documentation might vary by Region. To see the differences applicable to the AWS European Sovereign Cloud Region, see the AWS European Sovereign Cloud User Guide.

Quotas in Malware Protection for S3

This section provides default quotas, often referred to as limits. Unless specified, each quota is Region-specific. To view default quotas specific to using the foundational GuardDuty service, see Amazon GuardDuty quotas.

The following tables describe the multiple quotas that will apply to your AWS account.

Quota name AWS default quota value Is it adjustable? Description

Maximum S3 object size

100 GB

No

The maximum S3 object size that GuardDuty will attempt to scan for malware.

Although this quota is not adjustable, if you need to scan larger objects, contact AWS Support to determine if GuardDuty can increase the quota for your use case.

Extracted files

100,000

No

The maximum number of files that GuardDuty can extract and analyze in an S3 object.

Note

Compound files types are potentially subject to these limits. The file types include, but are not limited to, Multipurpose Internet Mail Extensions (MIME) encoded email messages, Compiled Python (PYC) files, Compiled HTML Help (CHM) files, all installers, and OpenDocument Format (ODF) documents.

Note

S3 objects with an extremely high compression ratio between the S3 object size and the extracted content size may be subject to limits even if the extracted files are below this quota.

Maximum depth levels

100

No

The maximum levels of nesting that GuardDuty can extract in an S3 object.

Maximum protected buckets

25

No

The maximum number of S3 buckets for which you can enable Malware Protection for S3. This quota limit is per account in each Region.