CloudTrail – AWS’s API activity logging service.

AWS CloudTrail is a service that enables governance, compliance, and operational auditing of AWS accounts. It records and logs all API activity across AWS services, providing detailed event history for security analysis and troubleshooting. CloudTrail features organization-wide logging, log file validation for integrity, and encryption for security. The service includes multi-region trail configuration, integration with CloudWatch Logs for monitoring, and S3 lifecycle policies for log retention. It supports custom event selectors for filtering, provides insights for identifying unusual API activity, and enables real-time processing of log files.