Correct answer - "CloudTrail" : With CloudTrail, you can log, continuously monitor, and retain
account activity related to actions across your AWS infrastructure. CloudTrail provides event
history of your AWS account activity, including actions taken through the AWS Management
Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies
security analysis, resource change tracking, and troubleshooting.
"KMS Key Logs" - Logs are events requests from any source and includes information about the
requested action, the date and time of the action, request parameters
"IAM" - You can manually look to see what permissions a user or IAM role has but will not show if
API calls were made
"VPC Flow Logs" - VPC Flow Logs is a feature that enables you to capture information about the IP
traffic going to and from network interfaces in your VPC and not API calls
For more information visit