-
Notifications
You must be signed in to change notification settings - Fork 18
Home
Paul Duvall edited this page Dec 17, 2020
·
72 revisions
Welcome to the Continuous Security on AWS Workshop.
A list of the demos for the Continuous Security on AWS LiveLessons course.
| Category | Example | Status |
|---|---|---|
| Lesson 1: Common Tools | Integrating AWS CloudFormation Guard into CI/CD pipelines | Documented. Execution Failed. |
| Lesson 2: Identity and Access Management | Unit testing IAM policies across multiple accounts | TBD |
| Lesson 3: Detection & Incident Response | Integrating AWS CloudFormation security tests with AWS Security Hub and AWS CodeBuild reports | Documented. Execution Failed. |
| Lesson 4: Infrastructure Protection | AWS WAF Security Automations | Attempted. Failed. Too Complex. |
| Lesson 5: Data Protection | Amazon Macie Demo | Tested and Documented |
| Lesson 6: Compliance | Standardized Architecture for PCI DSS Compliance on AWS | TBD |
| Lesson 7: Container Security | Container DevSecOps with AWS CodePipeline using Hadolint and Anchore Engine | TBD |
A list of the demos for the Continuous Security on AWS LiveLessons course.
| Document | Description |
|---|---|
| AWS Solutions | AWS-vetted solutions launched via CloudFormation |
| AWS Labs | AWS Labs solutions on GitHub |
| AWS Samples | Sample code often associated with AWS blog posts |
| AWS Quick Start | Quick Start Solutions on AWS launched via CloudFormation |
| AWS Security Documentation | Security Documentation for each AWS Service |
| AWS Serverless Application Repository | Access Serverless Applications published by AWS and Community |
| AWS Well-Architected Framework | AWS Well-Architected Framework Documentation |
| Security Pillar | The Security Pillar of the AWS Well-Architected Framework |
| Tool | Description |
|---|---|
| git-secrets | Prevents you from committing secrets and credentials into git repositories |
| ecs-secrets | Runtime secrets management solution for ECS using Task IAM Roles |
- Amazon Detective Overview and Demonstration
- The New Amazon Macie - Demonstration
- Introduction to Amazon GuardDuty
- Introducing Amazon Inspector
- The AWS Web Application Firewall (WAF)
- Introduction to AWS Step Functions
- Intro to Amazon EventBridge
- Deploy CloudFormation using AWS CodePipeline
- Streamline Your Software Release Process Using AWS CodePipeline
- Unit testing IAM policies across multiple accounts
- Automate account creation, and resource provisioning using AWS Service Catalog, AWS Organizations, and AWS Lambda
- Managing AWS Organizations using the open source org-formation tool — Part 3
- Automated Response and Remediation with AWS Security Hub
- How to deploy the AWS Solution for Security Hub Automated Response and Remediation
- Enabling AWS Security Hub integration with AWS Chatbot
- Orchestrating a security incident response with AWS Step Functions
- Automate AWS Firewall Manager onboarding using AWS Centralized WAF and VPC Security Group Management solution
- Defense in depth using AWS Managed Rules for AWS WAF (part 1), Defense in depth using AWS Managed Rules for AWS WAF (part 2)
- How to use AWS Certificate Manager with AWS CloudFormation
- Solution: AWS WAF Security Automations