AWS Cloud Practitioner CLF-C02 Practice Question

The correct service for the given scenario is AWS Config, as it enables continuous monitoring, recording, and assessment of resource configurations against compliance standards. It helps in identifying non-compliant resources and can trigger alerts when a resource falls out of compliance. On the other hand, AWS CloudTrail is focused on logging API calls and user activity across an account, which is ideal for auditing but does not continuously evaluate configurations against compliance standards. Amazon Inspector is designed for automated security assessments of applications and does not specialize in compliance monitoring of resource configurations. Amazon GuardDuty offers threat detection and continuous monitoring for malicious or unauthorized behavior but does not assess compliance against regulatory standards.