diff --git a/README.md b/README.md
index 110d30f7..a19b43e0 100644
--- a/README.md
+++ b/README.md
@@ -15,6 +15,7 @@ Most configurations are based on [CIS Amazon web Services Foundations].
 - Set up CloudWatch alarms to notify you when critical changes happen in your AWS account.
 - Enable VPC Flow Logs with the default VPC in all regions.
 - Remove all rules associated with default route tables, default network ACLs and default security groups in the default VPC in all regions.
+- Enable GuardDuty in all regions.
 
 ## Usage
 
diff --git a/guardduty_baselines.tf b/guardduty_baselines.tf
new file mode 100644
index 00000000..9c801586
--- /dev/null
+++ b/guardduty_baselines.tf
@@ -0,0 +1,119 @@
+module "guardduty_baseline_ap-northeast-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.ap-northeast-1"
+  }
+}
+
+module "guardduty_baseline_ap-northeast-2" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.ap-northeast-2"
+  }
+}
+
+module "guardduty_baseline_ap-south-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.ap-south-1"
+  }
+}
+
+module "guardduty_baseline_ap-southeast-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.ap-southeast-1"
+  }
+}
+
+module "guardduty_baseline_ap-southeast-2" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.ap-southeast-2"
+  }
+}
+
+module "guardduty_baseline_ca-central-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.ca-central-1"
+  }
+}
+
+module "guardduty_baseline_eu-central-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.eu-central-1"
+  }
+}
+
+module "guardduty_baseline_eu-west-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.eu-west-1"
+  }
+}
+
+module "guardduty_baseline_eu-west-2" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.eu-west-2"
+  }
+}
+
+module "guardduty_baseline_eu-west-3" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.eu-west-3"
+  }
+}
+
+module "guardduty_baseline_sa-east-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.sa-east-1"
+  }
+}
+
+module "guardduty_baseline_us-east-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.us-east-1"
+  }
+}
+
+module "guardduty_baseline_us-east-2" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.us-east-2"
+  }
+}
+
+module "guardduty_baseline_us-west-1" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.us-west-1"
+  }
+}
+
+module "guardduty_baseline_us-west-2" {
+  source = "./modules/guardduty-baseline"
+
+  providers = {
+    aws = "aws.us-west-2"
+  }
+}
diff --git a/modules/guardduty-baseline/main.tf b/modules/guardduty-baseline/main.tf
new file mode 100644
index 00000000..12c02abe
--- /dev/null
+++ b/modules/guardduty-baseline/main.tf
@@ -0,0 +1,3 @@
+resource "aws_guardduty_detector" "default" {
+  enable = true
+}