diff --git a/README.md b/README.md
index 12d2952..fa6858a 100644
--- a/README.md
+++ b/README.md
@@ -5,7 +5,7 @@
 This module sets up a standard VPC with public and private subnets, NAT
 gateway(s), service endpoints, and routing.
 
-Creates endpoints for the following services: EC2, S3, SSM
+Creates endpoints for the following services: EC2, GuardDuty, S3, SSM
 
 ## Usage
 
@@ -15,7 +15,7 @@ and private subnets, you could use the following configuration:
 
 ```hcl
 module "vpc" {
-  source = "github.com/codeforamerica/tofu-modules-aws-vpc?ref=1.0.0"
+  source = "github.com/codeforamerica/tofu-modules-aws-vpc?ref=1.1.0"
 
   project        = "my-project"
   environment    = "dev"
diff --git a/main.tf b/main.tf
index 35ab9cb..1146792 100644
--- a/main.tf
+++ b/main.tf
@@ -171,6 +171,12 @@ module "endpoints" {
       subnet_ids          = module.vpc.private_subnets
       private_dns_enabled = true
     },
+    guardduty = {
+      service             = "guardduty-data"
+      tags                = { Name = "${local.prefix}-guardduty" }
+      subnet_ids          = module.vpc.private_subnets
+      private_dns_enabled = true
+    }
   }
 
   tags = var.tags