In [1]:
from graphviz import Digraph

# Diagram 1: Capital One Attack Flow
def capital_one_attack_flow():
    dot = Digraph(comment='Capital One Attack Flow')
    dot.node('A', 'Attacker')
    dot.node('W', 'Web Application Firewall (WAF)')
    dot.node('E', 'EC2 Instance')
    dot.node('I', 'Instance Metadata Service (IMDS)')
    dot.node('S', 'Amazon S3 Buckets')
    dot.edge('A', 'W', label='HTTP Request')
    dot.edge('W', 'E', label='Forwarded Request (Misconfiguration)')
    dot.edge('E', 'I', label='Retrieve Credentials')
    dot.edge('E', 'S', label='Access Data with Credentials')
    dot.render('capital_one_attack_flow', format='png')
    return dot

# Diagram 2: British Airways Attack Flow
def british_airways_attack_flow():
    dot = Digraph(comment='British Airways Attack Flow')
    dot.node('U', 'User (Browser)')
    dot.node('B', 'British Airways Website')
    dot.node('M', 'Malicious JavaScript')
    dot.node('A', 'Attacker-Controlled Server')
    dot.edge('U', 'B', label='Visit Payment Page')
    dot.edge('B', 'M', label='Inject Malicious Script')
    dot.edge('M', 'U', label='Capture Input Data')
    dot.edge('M', 'A', label='Exfiltrate Data')
    dot.render('british_airways_attack_flow', format='png')
    return dot

# Diagram 3: OWASP Top Ten Wheel
def owasp_top_ten_wheel():
    dot = Digraph(comment='OWASP Top Ten Wheel')
    dot.node('C', 'OWASP Top Ten', shape='circle')
    risks = ['A1: Injection', 'A2: Broken Authentication', 'A3: Sensitive Data Exposure',
             'A4: XML External Entities', 'A5: Broken Access Control', 'A6: Security Misconfiguration',
             'A7: Cross-Site Scripting', 'A8: Insecure Deserialization', 'A9: Using Components with Known Vulnerabilities',
             'A10: Insufficient Logging & Monitoring']
    for i, risk in enumerate(risks):
        dot.node(str(i), risk)
        dot.edge('C', str(i))
    dot.render('owasp_top_ten_wheel', format='png')
    return dot

# Diagram 4: AWS Security Pillar Layers
def aws_security_pillar_layers():
    dot = Digraph(comment='AWS Security Pillar Layers')
    layers = ['Identity and Access Management (IAM)', 'Detective Controls', 'Infrastructure Protection', 'Data Protection', 'Incident Response']
    for i, layer in enumerate(layers):
        dot.node(str(i), layer, shape='box')
        if i > 0:
            dot.edge(str(i-1), str(i))
    dot.render('aws_security_pillar_layers', format='png')
    return dot

# Diagram 5: Zero Trust Access Flow
def zero_trust_access_flow():
    dot = Digraph(comment='Zero Trust Access Flow')
    dot.node('U', 'User/Device')
    dot.node('A', 'Authentication Service')
    dot.node('P', 'Policy Engine')
    dot.node('R', 'Resource')
    dot.edge('U', 'A', label='Request Access')
    dot.edge('A', 'P', label='Verify Identity')
    dot.edge('P', 'R', label='Grant Access if Approved')
    dot.render('zero_trust_access_flow', format='png')
    return dot

# Diagram 6: CIS Benchmark Structure
def cis_benchmark_structure():
    dot = Digraph(comment='CIS Benchmark Structure')
    dot.node('C', 'CIS AWS Foundations Benchmark')
    categories = ['Identity and Access Management', 'Logging', 'Monitoring', 'Networking']
    subcategories = {
        'Identity and Access Management': ['MFA', 'Password Policies'],
        'Logging': ['CloudTrail', 'S3 Bucket Logging'],
        'Monitoring': ['CloudWatch Alarms', 'GuardDuty'],
        'Networking': ['VPC Configuration', 'Security Groups']
    }
    for cat in categories:
        dot.node(cat, cat)
        dot.edge('C', cat)
        for sub in subcategories[cat]:
            dot.node(sub, sub)
            dot.edge(cat, sub)
    dot.render('cis_benchmark_structure', format='png')
    return dot

# Generate all diagrams
if __name__ == "__main__":
    capital_one_attack_flow()
    british_airways_attack_flow()
    owasp_top_ten_wheel()
    aws_security_pillar_layers()
    zero_trust_access_flow()
    cis_benchmark_structure()