AI CloudAdvisor (Beta)

Configuration Builder
New!

My Presets

You must be logged in to save or view your saved configuration templates

Security Controls

Service Control PoliciesConfig RulesCloudWatch Alarms and Event RulesCloudFormation Guard RulesLogging & Monitoring ConfigurationsBackups & DRAuto Remediation RulesConformance PacksBilling and Cost ManagementS3 Bucket PoliciesSecurity Groups & NACLsIAM PoliciesVPC Endpoint Policies

AWS Services

Guided Walkthroughs

Configuration Packages

Reference Guides

Other

AI CloudAdvisor (Beta)

Configuration Builder
New!

Configuration Stack (Legacy)
0

My Presets

Loading Library ...

Guided Walkthroughs

Configuration Packages

Other

Open Source Solutions

Last Updated: almost 2 years ago

Identity & Access Management

How-to Automate AWS Account Creation with SSO User Assignment
Jan 25 2022 | AWS Security Blog | SSO
Continuous Compliance Monitoring using Custom Audit Controls and Frameworks with AWS Audit Manager
Jan 12 2022 | AWS Security Blog | SSO, Systems Manager
How-to Set Up Multi-Factor Authentication with OneLogin for Amazon WorkSpaces
Jan 07 2022 | AWS Desktop and Application Streaming Blog | WorkSpaces
How-to Use Okta Claims with Application Entitlements for Amazon AppStream 2.0
Jan 07 2022 | AWS Desktop and Application Streaming Blog | AppStream
How-to Use Amazon AppStream 2.0 application entitlements with Azure AD
Jan 07 2022 | AWS Desktop and Application Streaming Blog | AppStream
How-to Enable Secure Seamless Single Sign-On to Amazon EC2 Windows Instances with AWS SSO
Nov 23 2021 | AWS Security Blog | EC2, Systems Manager, SSO
How-to Use OneLogin SSO with Amazon AppStream 2.0
Oct 12 2021 | AWS Desktop and Application Streaming Blog | AppStream
How-to Use Okta as an Identity Provider with Amazon MWAA
Oct 07 2021 | AWS Compute Blog | MWAA, SSO
How-to Validate IAM policies in CloudFormation Templates using IAM Access Analyzer
Sep 29 2021 | AWS Security Blog | IAM, CloudFormation
How-to Securely Extend and Access On-Premises Active Directory Domain Controllers in AWS
Sep 29 2021 | AWS Security Blog | EC2
Manage your AWS Directory Service credentials using AWS Secrets Manager
Sep 28 2021 | AWS Security Blog | Managed Active Directory, Secrets Manager
How-to Automate Incident Response to Security Events with AWS Systems Manager Incident Manager
Sep 17 2021 | AWS Security Blog | Systems Manager
How-to Use ACM Private CA for Enabling Mutual TLS in AWS App Mesh
Aug 31 2021 | AWS Security Blog | AppMesh, ACM
How-to Authenticate AWS Client VPN Users with AWS Single Sign-On
Aug 31 2021 | AWS Security Blog | SSO, Client VPN, VPN
Use IAM Access Analyzer to Generate IAM Policies Based on Access Activity Found in Your Organization Trail
Aug 26 2021 | AWS Security Blog | IAM
Use IAM Access Analyzer to Generate IAM Policies Based on Access Activity Found in Your Organization Trail
Aug 26 2021 | AWS Security Blog | IAM, EC2, Systems Manager
How-to Implement Row-Level Security Using a Complete LDAP Hierarchical Organization Structure in Amazon QuickSight
Aug 17 2021 | AWS Big Data Blog | QuickSight
How-to Implement Row-Level Security Using a Complete LDAP Hierarchical Organization Structure in Amazon QuickSight
Aug 17 2021 | AWS Big Data Blog | QuickSight
How-to Configure Single Sign-On using Google Workspaces for Amazon Connect
Aug 02 2021 | AWS Contact Center Blog | Connect
How-to Build a Centralized granular access control to manage assets and data access in Amazon QuickSight
Jul 28 2021 | AWS Big Data Blog | QuickSight
How-to Restrict IAM Roles to Access AWS Resources from Specific Geolocations using AWS Client VPN
Jul 20 2021 | AWS Security Blog | IAM, Client VPN
How-to Configure SAML Single Sign-On for Kibana with AD FS on Amazon Elasticsearch Service
Jul 09 2021 | AWS Security Blog | Ekasticsearch
Automate Resolution for IAM Access Analyzer Cross-Account Access Findings on IAM Roles
Jul 09 2021 | AWS Security Blog | IAM
Build an End-to-End Attribute-Based Access Control Strategy with AWS SSO and Okta
Jul 06 2021 | AWS Security Blog | SSO
How-to Create a Portable Root CA using AWS CloudHSM and ACM Private CA
Jun 24 2021 | AWS Security Blog | ACM
How-to Configure Federated Authentication to Amazon Redshift using AWS Single Sign-On
Jun 24 2021 | AWS Big Data Blog | SSO, Redshift
How-to Configure Federated Authentication to Amazon Redshift using AWS Single Sign-On
Jun 24 2021 | AWS Big Data Blog | SSO, Redshift
How-to Integrate Active Directory Federation Service (ADFS) with AWS Single Sign-On (SSO)
May 12 2021 | AWS Architecture Blog | SSO
How-to Integrate Okta with AWS Single Sign-On in an AWS Control Tower Environment
Apr 05 2021 | AWS Marketplace Blog | Control Tower, SSO
How-to Implement the Principle of Least Privilege with CloudFormation StackSets
Mar 24 2021 | AWS Security Blog | CloudFormation
How-to Delegate Management of Identity in AWS Single Sign-On
Mar 05 2021 | AWS Security Blog | SSO
How-to Use New Account Assignment APIs for AWS SSO to Automate Multi-Account Access
Feb 08 2021 | AWS Security Blog | SSO
How-to Control VPC Sharing in an AWS Multi-Account Setup with Service Control Policies (SCPs)
Jan 29 2021 | AWS Security Blog | VPC, IAM, Organizations
How to Relate IAM Role Activity to Corporate Identity
Jan 07 2021 | AWS Security Blog | IAM
Limit Interactive Session Commands by Groups of Users using AWS Systems Manager
Dec 31 2020 | AWS Management Blog | Systems Manager, IAM
How-to Automate Mutual TLS Setup for Amazon API Gateway
Dec 22 2020 | AWS Compute Blog | API Gateway
How-to Incorporate Security in Code-Reviews using Amazon CodeGuru Reviewer
Dec 18 2020 | AWS Desktop and Application Streaming Blog | AppStream
How-to Add SAML Authentication to an Amazon AppStream 2.0 SaaS Portal
Dec 18 2020 | AWS Desktop and Application Streaming Blog | AppStream
How to Bulk Import Users and Groups from CSV into AWS SSO
Dec 14 2020 | AWS Security Blog | SSO
Implementing Fine-Grained Access Control in Amazon Elasticsearch Service
Dec 09 2020 | AWS Security Blog | Elasticsearch, Cognito
How to Secure Amazon WorkSpaces for External Users
Nov 10 2020 | AWS Security Blog | Workspaces
How-to Configure Single Sign-On using Microsoft Azure Active Directory for Amazon Connect
Nov 06 2020 | AWS Contact Center Blog | Connect
Enabling Identity Federation with Shibboleth and Amazon AppStream 2.0
Oct 28 2020 | AWS Desktop and Application Streaming Blog | AppStream
How to Automatically Archive Expected IAM Access Analyzer Findings
Oct 12 2020 | AWS Security Blog | IAM
How-to Enable Office 365 with AWS Managed Microsoft AD without user password synchronization
Oct 02 2020 | AWS Security Blog | AWS Managed AD
Enabling Multi-Factor Authentication for an Amazon Redshift Cluster using Okta as an Identity Provider
Oct 01 2020 | AWS Big Data Blog | Redshift
How-to Enforce Multi-Factor Authentication Programmatic Access for IAM Users using a YubiKey
Sep 30 2020 | AWS Security Blog | IAM
Federating Single Sign-On Access to your Amazon Redshift Cluster with PingIdentity
Sep 28 2020 | AWS Big Data Blog | Redshift
Enabling Amazon QuickSight Federation with Azure AD
Sep 28 2020 | AWS Big Data Blog | QuickSight
Integrating FreeRADIUS MFA with Amazon WorkSpaces
Sep 24 2020 | AWS Desktop and Application Streaming Blog | WorkSpaces
On-Demand SCIM provisioning of Azure AD to AWS SSO with PowerShell
Sep 22 2020 | AWS Security Blog | SSO
Securing Resource Tags used for Authorization using a Service Control Policy (SCP) in AWS Organizations
Aug 18 2020 | AWS Security Blog | Tags
Using ACM Private Certificate Authority in a Multi-Account Environment by using IAM Roles
Aug 04 2020 | AWS Security Blog | ACM, IAM
How-to Secure deployment of Amazon SageMaker resources
Aug 03 2020 | AWS Security Blog | SageMaker, IAM
How-to Set Up Passwordless Login from Amazon EC2 Windows and Linux Instances to Amazon RDS Oracle Databases
Jul 20 2020 | AWS Database Blog | RDS
Configure Session Manager access for federated users using SAML session tags
Jul 13 2020 | AWS Management Blog | EC2, IAM, Systems Manager
How to Use Resource-Based Policies in the AWS Secrets Manager Console to Securely Access Secrets Across AWS Accounts
Jul 10 2020 | AWS Security Blog | Secrets Manager
Cross-Account IAM Roles for Kubernetes Service Accounts
Jul 07 2020 | AWS Containers Blog | EKS
How to use G-Suite as an external identity provider for AWS Single Sign-On (SSO)
Jul 06 2020 | AWS Security Blog | SSO
Monitoring AWS Certificate Manager Private CA Events with AWS Security Hub
Jul 02 2020 | AWS Security Blog | ACM, Security Hub
Automatic Remediation for Aged IAM Access Keys using AWS Config
Jun 22 2020 | AWS Management Blog | Systems Manager, Config, IAM
Manage Amazon EKS with Okta SSO
Jun 01 2020 | AWS Network Blog | EKS
How to Set Up G Suite SAML 2.0 Federation with Amazon AppStream 2.0
May 29 2020 | AWS Desktop and Application Streaming Blog | AppStream
How-to Create IAM SAML Providers in CloudFormation
May 26 2020 | AWS Security Blog | IAM
Multi-Tenant Data Isolation with PostgreSQL Row Level Security
May 18 2020 | AWS Database Blog | RDS
How-to Enable Single Sign-On Between OneLogin and AWS
May 12 2020 | AWS Architecture Blog | SSO
How to Federate Amazon Redshift Access with Microsoft Azure AD Single Sign-On
Apr 27 2020 | AWS Big Data Blog | Redshift
Using Microsoft Active Directory MFA with AWS Client VPN
Apr 09 2020 | AWS Network Blog | VPN
Use Azure MFA and Microsoft Network Policy Server (NPS) for Multi-Factor Authentication with Amazon WorkSpaces
Apr 03 2020 | AWS Desktop and Application Streaming Blog | WorkSpaces
How-to Use AWS Lambda Authorizers with a Third-Party Identity Provider to Secure Amazon API Gateway REST APIs
Mar 25 2020 | AWS Security Blog | API Gateway
How to Use IAM Authentication with Amazon RDS and Aurora PostgreSQL for Database Access
Dec 16 2019 | AWS Database Blog | IAM, RDS
Identify Unintended Resource Access with AWS IAM Access Analyzer
Dec 02 2019 | AWS News Blog | IAM, S3, Lambda, SQS
Create Fine-Grained Permissions in AWS Using Employee Attributes from a Corporate Directory
Nov 29 2019 | AWS Security Blog | IAM
How-to Use attribute-based access control with AD FS to simplify IAM permissions management
Nov 25 2019 | AWS Security Blog | IAM
How-to Create a Curated Digital Catalog of AWS Marketplace Products in a Multi-Account Environment
Oct 29 2019 | AWS Marketplace Blog | Marketplace, Service Catalog
How to use AWS Secrets Manager to securely store and rotate SSH key pairs
Sep 18 2019 | AWS Security Blog | Secrets Manager, EC2
How to Federate Amazon QuickSight access with Okta
Sep 13 2019 | AWS Big Data Blog | QuickSight, IAM
Using IAM Role-Based Authentication to Amazon Aurora From Serverless Applications
Sep 13 2019 | AWS Database Blog | RDS, IAM
Controlling access to a well-architected Private Marketplace using IAM and AWS Organizations
Sep 04 2019 | AWS Marketplace Blog | Marketplace
HTTP Cookie Based Authentication for CloudFront with Lambda@Edge and Cognito
Aug 16 2019 | AWS Network Blog | CloudFront, Lambda
Escalating AWS IAM Privileges Part 2
Jul 23 2019 | rhinosecuritylabs | IAM
How to Use Secrets Manager in CloudFormation to Generate, Store or Retrieve Passwords
Jul 02 2019 | AWS Infrastructure & Automation Blog | Secrets Manager, CloudFormation
Set Up Workspaces and Amazon Connect Profiles When Users are Created in Managed Microsoft AD
Jun 28 2019 | AWS Compute Blog | Managed Active Directory, WorkSpaces, Connect
How to Host and Manage an Entire Private Certificate Infrastructure using AWS Certificate Manager (ACM) Private CA
Jun 20 2019 | AWS Security Blog | ACM
How to Prompt Users to Reset their AWS Managed Microsoft AD Passwords Proactively
Jun 20 2019 | AWS Security Blog | Managed Active Directory
How to Access Private Applications on AWS Fargate using Amazon API Gateway PrivateLink
Jun 18 2019 | AWS Compute Blog | VPC, Fargate
Escalating AWS IAM Privileges with an Undocumented CodeStar API
Jun 18 2019 | rhinosecuritylabs | IAM
How to Securely Store Credentials using AWS Secrets Manager with AWS Fargate
Jun 17 2019 | AWS Compute Blog | Secrets Manager, Fargate
How to securely provide database credentials to Lambda functions by using AWS Secrets Manager
Jun 06 2019 | AWS Security Blog | Secrets Manager, RDS
How to Use Okta as an identity provider with AWS Transfer for SFTP
May 30 2019 | AWS Storage Blog | IAM, AWS SFTP
How to Enable federation for Amazon Connect with AWS Single Sign-On
May 30 2019 | AWS Contact Center Blog | Connect, IAM, SSO
How to Enable password authentication for AWS Transfer for SFTP using AWS Secrets Manager
May 03 2019 | AWS Storage Blog | Secrets Manager, AWS SFTP
How to Configure Single Sign-On for Amazon Connect Using Okta
May 01 2019 | AWS Contact Center Blog | Connect, IAM
How to Integrate Microsoft Azure MFA Server with Amazon WorkSpaces
Apr 29 2019 | AWS Desktop and Application Streaming Blog | WorkSpaces
Create a Self-Service Portal for Amazon WorkSpaces End Users
Apr 22 2019 | AWS Desktop and Application Streaming Blog | WorkSpaces
How to Limit Access to Stream Amazon AppStream 2.0 Applications based on IP ranges
Apr 11 2019 | AWS Desktop and Application Streaming Blog | AppStream
How to Federate Amazon Redshift Access with Okta as an Identity Provider
Apr 05 2019 | AWS Big Data Blog | Redshift
How to Integrate Okta MFA with Amazon WorkSpaces
Apr 02 2019 | AWS Desktop and Application Streaming Blog | WorkSpaces
How to audit AWS IAM and Resource Policies
Mar 26 2019 | AWS Datbase Blog | IAM
How to Grant Fine-Grained Access to the Amazon Redshift Management Console
Mar 26 2019 | AWS Big Data Blog | Redshift
How to rotate Amazon DocumentDB and Amazon Redshift credentials in AWS Secrets Manager
Mar 15 2019 | AWS Security Blog | Secrets Manager, Redshift, DocumentDB
How to Enable Secure Access to Kibana using AWS Single Sign-On
Jan 30 2019 | AWS Security Blog | Elasticsearch, SSO
How to eliminate EC2 keypairs from password retrieval of provisioned Windows instances using Secrets Manager and CloudFormation
Jan 28 2019 | AWS Security Blog | EC2, Secrets Manager
How to automate SAML federation to multiple AWS accounts from Microsoft Azure Active Directory
Jan 21 2019 | AWS Security Blog | IAM
Set up Federation with Active Directory and Cognito Pools to Authenticate to Amazon Elasticsearch with Kibana
Jan 10 2019 | AWS Partner Blog | Elasticsearch, Cognito
How to centralize and automate IAM policy creation in sandbox, development, and test environments
Jan 07 2019 | AWS Security Blog | IAM, CodePipeline
Using AWS SSM Parameter Store With Git SSH Keys
Dec 20 2018 | alestic.com | Systems Manager
Enable federation to multiple AWS Accounts with OpenID
Dec 15 2018 | ianduffy.ie | IAM
Enable federation with AWS Single Sign-On and Amazon AppStream 2.0
Nov 20 2018 | AWS Desktop and Application Streaming Blog | SSO, AppStream
Automate replication of secrets in AWS Secrets Manager across AWS Regions
Nov 20 2018 | AWS Security Blog | Secrets Manager
Securing access to AMIs in AWS Marketplace
Nov 19 2018 | AWS Security Blog | IAM, Marketplace, EC2
Simplify Granting Access to AWS Resources by Using Tags on AWS IAM Users and Roles
Nov 19 2018 | AWS Security Blog | IAM, Tags
How to create and manage users within AWS Single Sign-On
Oct 17 2018 | AWS Samples | SSO
How to rotate a non-RDS MySQL database secret using AWS Secrets Manager
Oct 8 2018 | AWS Security Blog | Secrets Manager, EKS
Using Federated Identities with AWS CodeCommit
Oct 5 2018 | AWS DevOps Blog | CodeCommit, SSO
AWS Config Rule for checking compliance for Active Directory Users
Oct 5 2018 | github.com/totoleon | Config
Use AWS Secrets Manager to rotate credentials for all Amazon RDS database types, including Oracle
Aug 29 2018 | AWS Security Blog | RDS, Secrets Manager
Restrict Access to EC2 Instances Based on Tags
Aug 07 2018 | cloudonaut.io | EC2, IAM, Tags
How to delegate IAM permission management to developers by using IAM Permissions Boundaries
Jul 13 2018 | AWS Security Blog | IAM
Configure Secrets Manager for MongoDB
Jul 07 2018 | sanderknape.com | Secrets Manager
How to use IAM Multifactor Authentication to protect RDS Resources from Deletion
Jun 24 2018 | AWS Database Blog | IAM, RDS
Control Access to AWS Regions using IAM policies
Apr 25 2018 | AWS Security Blog | AWS, IAM
How to Mandate Multi-factor Authentication for API/CLI Access
Dec 1 2017 | AWS Documentation | IAM
How to Federate Database User Authentication with IAM and Amazon Redshift
Oct 19 2017 | AWS Big Data Blog | Redshift, IAM
Use Service Control Policies in AWS Organizations to Enforce Compliance in Your AWS Account
Mar 29 2017 | AWS Security Blog | AWS, Organizations
How to Enable Multi-Factor Authentication for AWS Services such as Amazon Workspaces and QuickSight
Feb 13 2017 | AWS Security Blog | WorkSpaces, QuickSight, AWS Managed AD

Logging & Monitoring

Analyze AWS WAF Logs using Amazon OpenSearch Service Anomaly Detection
Jan 24 2022 | AWS Security Blog | WAF, Elasticsearch
How-to Create an Amazon CloudWatch Dashboard to Monitor Amazon RDS for PostgreSQL and Amazon Aurora PostgreSQL
Jan 24 2022 | AWS Database Blog | RDS, CloudWatch
How-to Enrich AWS Security Hub Findings with Account Metadata
Jan 21 2022 | AWS Security Blog | Security Hub
Continuous Compliance Monitoring using Custom Audit Controls and Frameworks with AWS Audit Manager
Jan 18 2022 | AWS Security Blog | Audit Manager
How-to Automate Alerting on Amazon WorkSpaces Service Limits
Jan 07 2022 | AWS Desktop and Application Streaming Blog | WorkSpaces
How-to Disable Security Hub Controls in a Multi-Account Environment
Jan 06 2022 | AWS Security Blog | Security Hub
How-to Automatically Resolve Security Hub Findings for Resources that No Longer Exist
Jan 04 2022 | AWS Security Blog | Security Hub
Simplify Setup of Amazon Detective with AWS Organizations
Dec 22 2021 | AWS Security Blog | Detective
How-to Find Public IPs of Resources with AWS Config
Dec 21 2021 | AWS Architecture Blog | Config
Analyze Cross-Account AWS KMS Call Usage with AWS CloudTrail and Amazon Athena
Dec 21 2021 | AWS Architecture Blog | KMS, CloudTrail
How-to Improve Visibility into AWS WAF with Anomaly Detection
Sep 17 2021 | AWS Security Blog | WAF
How-to Create Auto-Suppression Rules in AWS Security Hub
Jul 19 2021 | AWS Security Blog | Security Hub
Automate Resolution for IAM Access Analyzer Cross-Account Access Findings on IAM Roles
Jul 09 2021 | AWS Security Blog | IAM
How-to Monitor and Track Failed Logins for AWS Managed Microsoft AD
Jul 02 2021 | AWS Security Blog | AWS Managed AD
Configure Notifications to Monitor AWS Backup Jobs
Jun 17 2021 | AWS Storage Blog | Backup
How-to Monitor your Amazon ES domains with Amazon Elasticsearch Service Monitor
Jun 08 2021 | AWS Big Data Blog | Elasticsearch
How-to Monitor CIS AWS Foundations Benchmark Controls with AWS CloudWatch Contributor Insights
Jun 04 2021 | AWS Operations Blog | CloudTrail, CloudWatch
How-to Visualize AWS Infrastructure with Amazon Neptune and AWS Config
May 25 2021 | AWS Database Blog | Config
How-to Import AWS IoT Device Defender Audit Findings into Security Hub
May 24 2021 | AWS Security Blog | Security Hub, IoT Device Defender
How-to Monitor Expirations of Imported Certificates in AWS Certificate Manager (ACM)
May 07 2021 | AWS Security Blog | ACM, Security Hub
How-to Auto-Remediate Internet Accessible Ports with AWS Config and AWS System Manager
Mar 16 2021 | AWS Security Blog | Config
How-to Use VPC Traffic Mirroring to Monitor and Secure your AWS Infrastructure
Mar 10 2021 | AWS Network Blog | Route53, VPC
How-to Set up a Recurring Security Hub Summary Email
Feb 24 2021 | AWS Security Blog | Security Hub
How-to Continuously Audit and Limit Security Groups with AWS Firewall Manager
Feb 18 2021 | AWS Security Blog | EC2, VPC, Firewall Manager
How-to Configure DNSSEC Signing and Validation with Amazon Route 53
Feb 04 2021 | AWS Network Blog | Route53, VPC
Automate Customized Deployment of Cross-Account/Cross-Region CloudWatch Dashboards using Tags
Jan 07 2021 | AWS Management Blog | CloudWatch
How to Visualize Multi-Account Amazon Inspector Findings with Amazon Elasticsearch Service
Dec 23 2020 | AWS Security Blog | Inspector, Elasticsearch
Build a SIEM on Amazon Elasticsearch Service
Nov 16 2020 | AWS Samples | Elasticsearch
Investigate VPC flows with Amazon Detective
Nov 16 2020 | AWS Security Blog | Detective, VPC
Using AWS Systems Manager OpsCenter and AWS Config for Compliance Monitoring
Oct 28 2020 | AWS Management Blog | Systems Manager, Config
Deploy Security Guardrails in AWS Organizations using Terraform
Oct 20 2020 | AWS Management Blog | Config
Enabling Amazon GuardDuty in AWS Control Tower using Delegated Administrator
Oct 08 2020 | AWS Management Blog | GuardDuty, Control Tower
How to Automatically Parse Route 53 Resolver Query Logs with Amazon Athena
Oct 06 2020 | AWS Network Blog | VPC, EC2, Route53
Automating Amazon CloudWatch Alarms with AWS Systems Manager
Sep 23 2020 | AWS Management Blog | Systems Manager, CloudWatch, EC2
Analyze access patterns in Amazon WorkSpaces
Sep 14 2020 | AWS Desktop and Application Streaming Blog | WorkSpaces
Securing Kubernetes applications with AWS App Mesh and cert-manager
Sep 14 2020 | AWS Containers Blog | EKS, AppMesh
Creating Realtime Dashboards using Amazon CloudFront Logs
Sep 02 2020 | AWS Network Blog | CloudFront
VPC Flow Log Automation using AWS Control Tower LifeCycle
Aug 23 2020 | AWS Management Blog | VPC, Control Tower
How-to Automate the Enrichment of AWS Alerts
Aug 18 2020 | Expel | CloudTrail, GuardDuty
Creating a Secure DevOps Pipeline for AWS Service Catalog
Aug 06 2020 | AWS Management Blog | Service Catalog
Using Amazon CloudWatch Features (Log Insights, Contributor Insights and Metric Filters) to Analyze CloudTrail logs
Jul 23 2020 | AWS Management Blog | CloudTrail, CloudWatch
CIS Amazon EKS Benchmark Overview
Jul 21 2020 | AWS Containers Blog | EKS
How to Create a Centralized Dashboard for AWS WAF Logs
Jul 08 2020 | AWS Security Blog | WAF
How-to Deploy AWS Config Rules and Conformance Packs using a Delegated Admin Account
May 28 2020 | AWS Management Blog | Config
Centralize Amazon CloudWatch Logs using AWS CDK
May 27 2020 | AWS Developer Blog | AppStream
How-to Automate Config Rule Deployment Across Accounts Using CloudFormation StackSets and AWS Organizations
May 21 2020 | AWS Management Blog | Config
Amazon Macie Features and How-To Guide
May 13 2020 | AWS News Blog | Macie
Enabling AWS Security Hub Integration with Slack using AWS Chatbot
May 08 2020 | AWS Security Blog | Security Hub
How to track changes to secrets stored in AWS Secrets Manager using AWS Config and AWS Config Rules
Apr 20 2020 | AWS Security Blog | Secrets Manager
Using VPC Flow Logs to Capture and Query EKS Network Communications
Apr 17 2020 | AWS Network Blog | EKS, VPC, Athena
Enable Automatic Logging of AWS WAF Web ACLs by Using AWS Config
Apr 10 2020 | AWS Security Blog | WAF, Config
How-to Use Amazon Detective for Rapid Security Investigation and Analysis
Mar 31 2020 | AWS News Blog | Detective
Automating AWS Security Hub Alerts with AWS Control Tower Lifecycle Events
Mar 26 2020 | AWS Management Blog | Security Hub, Control Tower
How-to Deploy Conformance Packs Across an Organization with Automatic Remediation
Mar 18 2020 | AWS Management Blog | Config
Continuous Compliance Monitoring for EC2 Instances with Chef InSpec and AWS Security Hub
Feb 26 2020 | AWS Security Blog | Systems Manager, EC2
Aggregating logs with S3 Same-Region Replication
Jan 08 2020 | AWS Storage Blog | S3
How to import AWS Config rules evaluations as findings in Security Hub
Dec 23 2019 | AWS Security Blog | Security Hub, Config
Centralizing Windows Logs with Amazon Elasticsearch Services
Oct 25 2019 | AWS Compute Blog | Elasticsearch
How-to Use Control Tower to Implement Guardrails and Detect Violations
Oct 08 2019 | AWS Management Tools Blog | Control Tower
Analyzing and visualizing AWS Global Accelerator flow logs using Amazon Athena and Amazon QuickSight
Oct 02 2019 | AWS Network Blog | Global Accelerator
How to Create a Notification when AMI Permissions Change
Sep 23 2019 | AWS Compute Blog | EC2
Analyzing AWS WAF logs with Amazon ES, Amazon Athena, and Amazon QuickSight
Aug 02 2019 | AWS Big Data Blog | VPC
How to Send Budget Alerts to Slack or Chime using AWS Chatbot
Jul 31 2019 | AWS Cost Management Blog | Budgets
Analyzing Amazon VPC Flow Log data with Amazon Athena and QuickSight for Visualization
Jul 31 2019 | AWS Management Tools Blog | VPC
How to Receive Phone Call Alerts for AWS Account Security Event Alerts on with Amazon Connect
Jul 26 2019 | AWS Contact Center Blog | AWS
How to Automate the Creation of Amazon CloudWatch Alarms with AWS CloudFormation Macros
Jul 23 2019 | AWS Infrastructure & Automation Blog | CloudFormation, CloudWatch
How to Set Up Alerts in Amazon Elasticsearch Service
Jul 09 2019 | AWS Big Data Blog | Elasticsearch
How to Query AWS Service Logs on S3 Using Amazon Athena
May 29 2019 | AWS Big Data Blog | S3, CloudTrail, VPC, Load Balancer, CloudFront
Set up Centralised Logging for Lambda@Edge
May 10 2019 | medium.com/@stefanroman | CloudFront, Lambda
How to Trim Unnecessary AWS WAF logs with Amazon Kinesis Firehose transformations
Apr 09 2019 | AWS Security Blog | CloudFormation
Enabling serverless security analytics using AWS WAF full logs, Amazon Athena, and Amazon QuickSight
Mar 28 2019 | AWS Security Blog | WAF, QuickSight
How to Monitor Amazon WorkSpaces Login Connections
Mar 04 2019 | AWS Desktop and Application Streaming Blog | WorkSpaces
How to visualize Amazon GuardDuty findings with Amazon QuickSight
Feb 18 2019 | AWS Security Blog | GuardDuty, QuickSight
Alerting, monitoring, and reporting for PCI-DSS awareness with Amazon Elasticsearch Service
Jan 22 2019 | AWS Security Blog | Elasticsearch
How to Analyze Amazon CloudFront access logs at scale with Amazon Athena
Dec 21 2018 | AWS Big Data Blog | CloudFront
How to Enable Forward AWS Security Hub Events to Slack or Email
Dec 13 2018 | AWS Partner Blog | Security Hub
Stream Amazon CloudWatch Logs to a Centralized Account for Audit and Analysis
Dec 3 2018 | AWS Architecture Blog | CloudWatch
How to analyze AWS WAF logs using Amazon Elasticsearch Service
Oct 30 2018 | AWS Security Blog | Elasticsearch, WAF
Monitor tag changes on AWS resources with serverless workflows and Amazon CloudWatch Events
Oct 30 2018 | AWS Management Tools Blog | CloudWatch, Tags
AWS Config Rule for checking compliance for Active Directory Users
Oct 5 2018 | github.com/totoleon | Config
Detecting AWS HoneyTokens by Bypassing CloudTrail and IAM Enumeration
Oct 2 2018 | rhinosecuritylabs | Config
Visualizing Amazon GuardDuty findings
Sep 06 2018 | AWS Security Blog | GuardDuty
How to Enable Forward Amazon GuardDuty Findings to Slack
Jul 28 2018 | AWS Code Samples | Security Hub
Clean up logs in S3 Buckets using Athena
May 14 2018 | cloudonaut.io | S3, Athena
Collect custom metrics from EC2 instances
May 11 2018 | https://medium.com/@zeebaig | EC2, CloudWatch
Use AWS Config to Monitor for and Respond to Amazon S3 Buckets Allowing Public Access
May 01 2018 | AWS Security Blog | S3, Config
Central Logging Solution for Applications in Multi-Account Environments
Mar 02 2018 | AWS Architecture Blog | AWS, Kinesis, CloudWatch
CloudWatch Alarms to Slack Integration
Nov 01 2017 | cloudonaut.io | CloudWatch, Slack
AWS Honeytokens: Breach Detection At Scale With PROJECT SPACECRAB
Oct 19 2017 | developer.atlassian.com | AWS
Query and Visualize AWS Cost and Usage Data Using Amazon Athena and Amazon QuickSight
Sep 27 2017 | AWS Big Data Blog | AWS
Monitor and Visualize Failed SSH Access Attempts to Amazon EC2 Linux Instances
Aug 02 2017 | AWS Security Blog | EC2, CloudWatch
Visualize and Refine Your Network’s Security by Adding Security Group IDs to Your VPC Flow Logs
May 03 2017 | AWS Security Blog | EC2, VPC, Elasticsearch
Set Up Warning Detectors Using AWS Access Keys as Honeytokens
Nov 30 2016 | blog.rapid7.com | AWS

Backup & Disaster Recovery

How-to Set Up a Cross-Region Disaster Rcovery Site for Amazon RDS for SQL Server
Jan 24 2022 | AWS Database Blog | RDS, DMS
Cross-Account Replication with Amazon DocumentDB (with MongoDB compatibility) and AWS DMS
Jun 15 2021 | AWS Database Blog | DocumentDB, DMS
How-to Replicate Secrets in AWS Secrets Manager to Multiple Regions
Mar 16 2021 | AWS Security Blog | Secrets Manager
How-to Recover Amazon EFS Files and Folders with AWS Backup
May 08 2020 | AWS Storage Blog | Backup, EFS
How-to Automate RDS Aurora Snapshots for disaster recovery
Apr 09 2020 | AWS Management Blog | RDS
How to Schedule Automated Backups using Amazon EFS and AWS Backup
Dec 12 2019 | AWS Storage Blog | EFS, Backup
Automate Amazon EBS Snapshot Management and Cross-Region Replication with AWS Step Functions and Amazon CloudWatch Events
Sep 18 2017 | AWS Compute Blog | EC2

Management

How-to Automate VPC Tagging with AWS Control Tower Lifecycle Events
Jan 12 2022 | AWS Infrastructure & Automating Blog | Control Tower, Tags
How-to Automate Alerting on Amazon WorkSpaces Service Limits
Jan 07 2022 | AWS Desktop and Application Streaming Blog | WorkSpaces
How-to Use AWS Control Tower to Deploy AWS Quick Starts to Multiple Accounts
Nov 09 2021 | AWS Infrastructure & Automating Blog | Control Tower
How to Set up a Two-Way Integration between AWS Security Hub and Jira Service Management
Oct 04 2021 | AWS Security Blog | Security Hub
How-to Securely Extend and Access On-Premises Active Directory Domain Controllers in AWS
Sep 29 2021 | AWS Security Blog | EC2
Manage your AWS Directory Service credentials using AWS Secrets Manager
Sep 28 2021 | AWS Security Blog | Managed Active Directory, Secrets Manager
How-to Automate Incident Response to Security Events with AWS Systems Manager Incident Manager
Sep 17 2021 | AWS Security Blog | Systems Manager
How-to Aggregate Operational Tasks with AWS Systems Manager Explorer and OpsCenter
Jun 14 2021 | AWS Management Blog | Systems Manager
How-to Visualize AWS Infrastructure with Amazon Neptune and AWS Config
May 25 2021 | AWS Database Blog | Config
Secure and Automated Domain Membership Management for EC2 Instances with no Internet Access
Feb 15 2021 | AWS Security Blog | EC2
How to Track Costs in Multi-Tenant Amazon EKS Clusters using Kubecost
Jul 27 2020 | AWS Containers Blog | EKS
How to Organize Cost and Usage Data with AWS Cost Categories
May 06 2020 | AWS Cost Management Blog | Cost Explorer, Budget
Remediating Non-Compliant AWS Service Catalog Products using AWS Config
Apr 09 2020 | AWS Management Blog | Service Catalog
Manage Amazon Elastic File System (EFS) Costs using AWS Budgets
Feb 25 2020 | AWS Cost Management Blog | Budgets, EFS
How to Monitor Service Usage with CloudWatch Alarms and Service Quotas
Dec 21 2019 | AWS Management Tools Blog | CloudWatch, Service Quota
Manage Tags Across Multiple AWS Accounts with Tag Policies
Nov 25 2019 | AWS Security Blog | Tags
How-to Use Control Tower to Implement Guardrails and Detect Violations
Oct 08 2019 | AWS Management Tools Blog | Control Tower
How to Create a Budget for Service Catalog Products
Sep 13 2019 | AWS Cost Management Blog | Budgets
Auto-populate instance details by integrating AWS Config with your ServiceNow CMDB
Aug 09 2019 | AWS Management Tools Blog | EC2, Config, ServiceNow
How to Send Budget Alerts to Slack or Chime using AWS Chatbot
Jul 31 2019 | AWS Cost Management Blog | Budgets
Automating life-cycle management for ephemeral resources using AWS Service Catalog
Jul 22 2019 | AWS Infrastructure & Automation Blog | Service Catalog
How to Query AWS Cost and Usage Report using Amazon Athena
Jul 08 2019 | AWS Cost Management Blog | AWS
Set Up Workspaces and Amazon Connect Profiles When Users are Created in Managed Microsoft AD
Jun 28 2019 | AWS Compute Blog | Managed Active Directory, WorkSpaces, Connect
How to Install and Configure the AWS Service Catalog Connector for ServiceNow
May 22 2019 | AWS Management Tools Blog | Service Catalog, ServiceNow
Enable Self-Service, Secured Data Science using Amazon SageMaker Notebooks and AWS Service Catalog
Mar 29 2019 | AWS Management Tools Blog | SageMaker, Service Catalog
How to audit AWS IAM and Resource Policies
Mar 26 2019 | AWS Datbase Blog | IAM
Managing AWS resources across multiple accounts and Regions using AWS Systems Manager Automation
Jan 31 2019 | AWS Management Tools Blog | Systems Manager, EC2
Automate enabling AWS Security Hub in Multi-Account Environments
Jan 31 2019 | AWS Security Blog | Security Hub
Securing access to AMIs in AWS Marketplace
Nov 19 2018 | AWS Security Blog | IAM, Marketplace, EC2
How to Query for the latest Windows AMI ID using AWS SSM Parameter Store
Nov 17 2018 | AWS Management Tools Blog | Systems Manager, EC2
Monitor tag changes on AWS resources with serverless workflows and Amazon CloudWatch Events
Oct 30 2018 | AWS Management Tools Blog | CloudWatch, Tags
Create On-Demand Secure Partitions for Application using AWS Service Catalog
Oct 11 2018 | AWS Management Tools Blog | IAM, Service Catalog
How to Generate Excel Cost Reports with Graphs Using the AWS Cost Explorer API
Oct 8 2018 | AWS Code Samples | Cost Explorer
How to Enable Self-Service Amazon WorkSpaces by Using AWS Service Catalog Connector for ServiceNow
Jul 16 2018 | AWS Management Tools Blog | Service Catalog, WorkSpaces, ServiceNow
How to Query for the latest Amazon Linux AMI IDs using AWS SSM Parameter Store
Jun 18 2018 | AWS Management Tools Blog | Systems Manager, EC2
AWS Instance Scheduler
Feb 17 2018 | AWS Answers | EC2, RDS
Query and Visualize AWS Cost and Usage Data Using Amazon Athena and Amazon QuickSight
Sep 27 2017 | AWS Big Data Blog | AWS
How to Automate End-to-End Account Creation with AWS Organizations
Jul 24 2017 | AWS Security Blog | Organizations

Infrastructure Security

How-to Automate Amazon WorkSpaces custom images across AWS Regions
Jan 07 2022 | AWS Desktop and Application Streaming Blog | WorkSpaces
Container Scanning in Amazon ECR Private Registries using Amazon Inspector
Dec 17 2021 | AWS Containers Blog | ECR, Inspector
Protect Workspaces Environments with AWS DNS Firewall and AWS Network Firewall
Sep 17 2021 | AWS Security Blog | Workspaces, Network Firewall, DNS Firewall
How-to Automate Forensic Disk Collection in AWS
Aug 24 2021 | AWS Security Blog | EC2
How-to Protect Amazon EKS Web Apps with AWS WAF
Aug 02 2021 | AWS Container Blog | WAF, EKS
How-to Implement the Three Most Important AWS WAF Rate-Based Rules
Jul 22 2021 | AWS Security Blog | WAF
How-to Restrict IAM Roles to Access AWS Resources from Specific Geolocations using AWS Client VPN
Jul 20 2021 | AWS Security Blog | IAM, Client VPN
How-to Implement a Centralized Patching Solution Across Multiple AWS Regions
Jul 19 2021 | AWS Security Blog | EC2, Systems Manager
How-to Automatically Update AWS WAF IP Sets with AWS IP Ranges
Jul 08 2021 | AWS Security Blog | WAF
EC2 AMI updates with capacity providers in Amazon ECS
Jun 17 2021 | AWS Containers Blog | ECS
How-to Monitor Expirations of Imported Certificates in AWS Certificate Manager (ACM)
May 07 2021 | AWS Security Blog | ACM, Security Hub
Hands-on Walkthrough of the AWS Network Firewall Flexible Rules Engine
Apr 27 2021 | AWS Security Blog | VPC, Network Firewall
Adding MACsec security to AWS Direct Connect connections
Apr 21 2021 | AWS Network Blog | Direct Connect
Secure your Amazon VPC DNS resolution with Amazon Route 53 Resolver DNS Firewall
Apr 15 2021 | AWS Network Blog | Route53, VPC
How-to Centralize Access using VPC Interface Endpoints to Access AWS Services across Multiple VPCs
Mar 22 2021 | AWS Network Blog | VPC
Automatically Block Suspicious Traffic with AWS Network Firewall and Amazon GuardDuty
Mar 16 2021 | AWS Security Blog | GuardDuty, Network Firewall
How-to Use VPC Traffic Mirroring to Monitor and Secure your AWS Infrastructure
Mar 10 2021 | AWS Network Blog | Route53, VPC
How Amazon Uses Amazon AppStream 2.0 to Provide Access to Sensitive Data
Mar 10 2021 | AWS Desktop and Application Streaming Blog | AppStream
How-to Configure DNSSEC Signing and Validation with Amazon Route 53
Feb 04 2021 | AWS Network Blog | Route53, VPC
How-to Control VPC Sharing in an AWS Multi-Account Setup with Service Control Policies (SCPs)
Jan 29 2021 | AWS Security Blog | VPC, IAM, Organizations
How-to Use Route 53 Private Hosted Zones for Cross-account Multi-region Architectures
Jan 20 2021 | AWS Architecture Blog | Route53, VPC
How to Visualize Multi-Account Amazon Inspector Findings with Amazon Elasticsearch Service
Dec 23 2020 | AWS Security Blog | Inspector, Elasticsearch
How to Deploy Public ACM Certificates Across Multiple AWS Accounts and Regions using AWS CloudFormation StackSets
Dec 21 2020 | AWS Security Blog | ACM
How to Use a Single AWS Managed Microsoft AD for Amazon RDS for SQL Server Instances in Multiple Regions
Dec 14 2020 | AWS Security Blog | AWS Managed AD
How to Protect a Self-Managed DNS Service against DDoS attacks using AWS Global Accelerator and AWS Shield Advanced
Dec 08 2020 | AWS Security Blog | Shield, Global Accelerator
How to Enforce AWS Network Firewall Protections at Scale with AWS Firewall Manager
Dec 04 2020 | AWS Security Blog | Network Firewall, Firewall Manager
How-to Create ServiceNow Incidents for AWS License Manager Notifications
Nov 23 2020 | AWS Management Blog | License Manager
How to Set up Centralized Monitoring for DDoS events and Auto-Remediate Noncompliant Resources
Nov 19 2020 | AWS Security Blog | Shield, Firewall Manager, Security Hub
How to Centrally Manage AWS WAF and AWS Managed Rules at Scale with Firewall Manager
Nov 17 2020 | AWS Security Blog | WAF, Firewall Manager
Scaling Network Traffic Inspection using AWS Gateway Load Balancer
Nov 11 2020 | AWS Network Blog | VPC, EC2
How to Secure Amazon WorkSpaces for External Users
Nov 10 2020 | AWS Security Blog | Workspaces
Automate Shared VPC and Security Group Provisioning using Control Tower Lifecycle Events
Oct 28 2020 | AWS Management Blog | VPC, Control Tower, Firewall Manager, EC2
How to enhance Amazon CloudFront origin security with AWS WAF and AWS Secrets Manager
Oct 22 2020 | AWS Security Blog | WAF, CloudFront, Secrets Manager
Automate AWS Firewall Manager onboarding using AWS Centralized WAF and VPC Security Group Management solution
Oct 20 2020 | AWS Security Blog | VPC, EC2, Firewall Manager
Use AWS Firewall Manager to Deploy Protection at Scale in AWS Organizations
Oct 14 2020 | AWS Security Blog | VPC, EC2, Firewall Manager, WAF
Isolating network access for AWS Cloud9 environments
Sep 29 2020 | AWS Security Blog | Cloud9
Designing a Secure Container Image Registry
Sep 25 2020 | AWS Containers Blog | ECR
Automatically updating AWS WAF Rule in real time using Amazon EventBridge
Sep 21 2020 | AWS Security Blog | WAF
Simplify Network Routing and Security Administration with VPC Prefix Lists
Sep 16 2020 | AWS Network Blog | VPC
Securing Kubernetes applications with AWS App Mesh and cert-manager
Sep 14 2020 | AWS Containers Blog | EKS, AppMesh
Integrating AWS CloudFormation Security Tests with AWS Security Hub and AWS CodeBuild Reports
Sep 14 2020 | AWS Security Blog | CloudFormation, CloudFormation Guard
How to configure an LDAPS endpoint for Simple AD
Sep 09 2020 | AWS Security Blog | SimpleAD
Defense in depth using AWS Managed Rules for AWS WAF
Sep 02 2020 | AWS Security Blog | WAF
How to import PFX-formatted certificates into AWS Certificate Manager using OpenSSL
Aug 24 2020 | AWS Security Blog | ACM
How to use AWS RAM to share your ACM Private CA cross-account
Aug 17 2020 | AWS Security Blog | ACM
Write Preventive Compliance Rules for AWS CloudFormation Templates the cfn-guard way
Aug 04 2020 | AWS Management Blog | CloudFormation, CloudFormation Guard
Using ACM Private Certificate Authority in a Multi-Account Environment by using IAM Roles
Aug 04 2020 | AWS Security Blog | ACM, IAM
Migrating Rules from AWS WAF Classic to AWS WAF v2
Aug 04 2020 | AWS Security Blog | WAF
How-to Secure deployment of Amazon SageMaker resources
Aug 03 2020 | AWS Security Blog | SageMaker, IAM
Securing Amazon EKS workloads with Atlassian Bitbucket and Snyk
Jul 24 2020 | AWS Containers Blog | EKS
CIS Amazon EKS Benchmark Overview
Jul 21 2020 | AWS Containers Blog | EKS
Using ACM Private Certificate Authority in a Multi-Account Environment by Using IAM Roles
Jul 21 2020 | AWS Security Blog | ACM
AWS Secrets Controller: Integrating AWS Secrets Manager with Kubernetes
Jun 15 2020 | AWS Containers Blog | EKS
Using Calico on Amazon EKS Windows Containers
Jun 15 2020 | AWS Containers Blog | EKS
How to Perform Automated Incident Response in a Multi-Account Environment
Jun 01 2020 | AWS Security Blog | GuardDuty, Security Hub, Systems Manager
How-to Use AWS Firewall Manager and VPC Security Groups to Protect Applications Hosted on EC2 Instances
May 08 2020 | AWS Security Blog | VPC, EC2, Firewall Manager
How-to Scale Remote Access VPN on AWS
Apr 30 2020 | AWS Network Blog | EC2, VPC
Using Microsoft Active Directory MFA with AWS Client VPN
Apr 09 2020 | AWS Network Blog | VPN
How-to Use IP Whitelisting to Secure your AWS Transfer for SFTP servers
Apr 08 2020 | AWS Network Blog | AWS SFTP
How-to Use AWS Lambda Authorizers with a Third-Party Identity Provider to Secure Amazon API Gateway REST APIs
Mar 25 2020 | AWS Security Blog | API Gateway
Enable Traffic Encryption between Services in AWS App Mesh using AWS Certificate Manager or Customer-Provided Certificates
Mar 13 2020 | AWS Containers Blog | AppMesh, ECS, EKS
Using EKS Encryption Provider Support for Defense-in-Depth
Mar 05 2020 | AWS Containers Blog | EKS
How to Build a CI/CD Pipeline with AWS Tools that Includes Security Code Vulnerability Checks using Snyk
Feb 17 2020 | AWS DevOps Blog | CodePipeline, ECR
How-to Secure EKS Ingress With Contour And Let’s Encrypt The GitOps Way
Jan 21 2020 | AWS Containers Blog | EKS
How-to Secure VPCs Egress using IDS/IPS leveraging Transit Gateway
Jan 14 2020 | AWS Network Blog | EC2, VPC, Transit Gateway
How to integrate third-party firewall appliances into an AWS environment
Jan 11 2020 | AWS Network Blog | EC2, VPC, Transit Gateway
Auto Remediation Example Using Amazon GuardDuty and Security Hub
Nov 26 2019 | AWS Security Blog | Security Hub, GuardDuty, EventBridge
How-to Forward Prowler Security Configuration Findings to Security Hub
Nov 26 2019 | AWS Security Blog | Security Hub
How to use AWS Managed Rules for AWS WAF
Nov 25 2019 | AWS Security Blog | WAF
How to Access Private S3 Buckets from CloudFormation Templates for Bootstrapping EC2 Instances
Nov 19 2019 | AWS Infrastructure & Automation Blog | CloudFormation, EC2
CloudFormation Best Practices for Deploying EC2 Instances Securely
Nov 15 2019 | AWS Infrastructure & Automation Blog | CloudFormation, EC2
How-to Create a Single internet Exit Point from Multiple VPCs Using AWS Transit Gateway
Oct 29 2019 | AWS Network Blog | Transit Gateway, EC2, VPC
Automate AWS Transit Gateway Attachments to a Transit Gateway in a Central Account
Oct 29 2019 | AWS Network Blog | Transit Gateway, VPC
How-to Create a Curated Digital Catalog of AWS Marketplace Products in a Multi-Account Environment
Oct 29 2019 | AWS Marketplace Blog | Marketplace, Service Catalog
How to Add URL Filtering to Your NAT Instance with Squid
Sep 23 2019 | AWS Security Blog | EC2
How-to Secure Amazon EMR clusters from unintentional network exposure with Block Public Access configuration
Sep 20 2019 | AWS Big Data Blog | EMR
How-to Implement perimeter security in Amazon EMR using Apache Knox
Sep 06 2019 | AWS Big Data Blog | EMR
Controlling access to a well-architected Private Marketplace using IAM and AWS Organizations
Sep 04 2019 | AWS Marketplace Blog | Marketplace
Analyzing AWS WAF logs with Amazon ES, Amazon Athena, and Amazon QuickSight
Aug 02 2019 | AWS Big Data Blog | VPC
Analyzing Amazon VPC Flow Log data with Amazon Athena and QuickSight for Visualization
Jul 31 2019 | AWS Management Tools Blog | VPC
How to Automate the Creation of Amazon CloudWatch Alarms with AWS CloudFormation Macros
Jul 23 2019 | AWS Infrastructure & Automation Blog | CloudFormation, CloudWatch
Automating life-cycle management for ephemeral resources using AWS Service Catalog
Jul 22 2019 | AWS Infrastructure & Automation Blog | Service Catalog
How to Host and Manage an Entire Private Certificate Infrastructure using AWS Certificate Manager (ACM) Private CA
Jun 20 2019 | AWS Security Blog | ACM
How to Access Private Applications on AWS Fargate using Amazon API Gateway PrivateLink
Jun 18 2019 | AWS Compute Blog | VPC, Fargate
How to Build a Centralized DNS Solution in Multi-Account Environments using Route 53 Resolvers
May 28 2019 | AWS Security Blog | Route 53 Resolvers, VPC
How to Build a Centralized Transparent Proxy Solution with Transit Gateway and Squid Proxy
May 24 2019 | AWS Samples | Transit Gateway, VPC
How to Centralize DNS Management of Hybrid Cloud with Amazon Route 53 and AWS Transit Gateway
May 03 2019 | AWS Network Blog | VPC, Route 53, Transit Gateway
How to Trim Unnecessary AWS WAF logs with Amazon Kinesis Firehose transformations
Apr 09 2019 | AWS Security Blog | CloudFormation
Setting up OpenVPN Access Server in Amazon VPC
Mar 26 2019 | AWS Marketplace Blog | VPC, OpenVPN
Bulid a Serverless OpenVPN Certificate Authority on AWS
Mar 07 2019 | medium.com/empathybroker | VPC
Alerting, monitoring, and reporting for PCI-DSS awareness with Amazon Elasticsearch Service
Jan 22 2019 | AWS Security Blog | Elasticsearch
How to use AWS WAF to Filter Incoming Traffic from Embargoed Countries
Jan 09 2019 | AWS Security Blog | WAF
How to Create an Opportunistic IPSec Mesh between EC2 Instances
Dec 20 2018 | AWS Security Blog | EC2, VPN, VPC
Securely Access AWS and On-Premise Resources using AWS Client VPN
Dec 19 2018 | AWS Network Blog | VPC, VPN
Best Practices for Securing Amazon EMR
Dec 14 2018 | AWS Big Data Blog | EMR, IAM
Protecting your API using AWS WAF
Nov 19 2018 | AWS Compute Blog | API Gateway, WAF
How to Scan Docker Images for Vulnerabilities using Clair, Amazon ECS, ECR, and AWS CodePipeline
Nov 11 2018 | AWS Compute Blog | ECS, ECR, CodePipeline
Scanning Docker Images for Vulnerabilities using Clair, Amazon ECS, ECR, and AWS CodePipeline
Nov 11 2018 | AWS Compute Blog | ECS, CodePipeline
Create On-Demand Secure Partitions for Application using AWS Service Catalog
Oct 11 2018 | AWS Management Tools Blog | IAM, Service Catalog
Protecting your API using API Keys between CloudFront and API Gateway
Aug 30 2018 | AWS Compute Blog | API Gateway
How to use AWS PrivateLink to Centralize an Explicit Proxy Solution Across Multiple VPCs
Aug 08 2018 | AWS Network Blog | PrivateLink
Restrict Access to EC2 Instances Based on Tags
Aug 07 2018 | cloudonaut.io | EC2, IAM, Tags
How to use Amazon GuardDuty and AWS Web Application Firewall to automatically block suspicious hosts
Aug 03 2018 | AWS Security Blog | GuardDuty, WAF
Maintaining Transport Layer Security all the way to your container and using ACM Private CA for Automating Certificate Creation and Distribution
Jul 30 2018 | AWS Compute Blog | ACM, Load Balancer
Set up AWS CloudFront and Lambda@Edge to authenticate requests using Google Apps, Microsoft, and GitHub login
Mar 26 2018 | https://github.com/Widen | S3, CloudFront, Lambda
Automate Security Group Updates with AWS Lambda
Oct 24 2017 | AWS Compute Blog | EC2
Automatically Revert and Receive Notifications About Changes to Your Amazon VPC Security Groups
Oct 11 2017 | AWS Security Blog | EC2, VPC
Basic HTTP Authentication for a Static Website Hosted on AWS S3
Aug 30 2017 | hackernoon.com/@lmakarov | S3, CloudFront
Visualize and Refine Your Network’s Security by Adding Security Group IDs to Your VPC Flow Logs
May 03 2017 | AWS Security Blog | EC2, VPC, Elasticsearch
Implementing DevSecOps Using AWS CodePipeline
Mar 23 2017 | AWS Security Blog | CodePipeline, CloudFormation

Data Protection

How-to Secure End-to-End Traffic on Amazon EKS using TLS Certificate in ACM, ALB, and Istio
Dec 17 2021 | AWS Containers Blog | ACM, EKS, Load Balancer
How-to Create AWS Lambda Environment Variables from AWS Secrets Manager
Oct 28 2021 | AWS Compute Blog | Lambda, Secrets Manager
How-to Enable Data Classification for Amazon RDS with Macie
Oct 05 2021 | AWS Security Blog | Macie, RDS
How-to Enable Data Classification for Amazon RDS with Macie
Oct 05 2021 | AWS Security Blog | Macie, RDS
How-to Implement Row-Level Security Using a Complete LDAP Hierarchical Organization Structure in Amazon QuickSight
Aug 17 2021 | AWS Big Data Blog | QuickSight
How-to Implement Row-Level Security Using a Complete LDAP Hierarchical Organization Structure in Amazon QuickSight
Aug 17 2021 | AWS Big Data Blog | QuickSight
How-to Build a Centralized granular access control to manage assets and data access in Amazon QuickSight
Jul 28 2021 | AWS Big Data Blog | QuickSight
TLS-enabled Kubernetes clusters with ACM Private CA and Amazon EKS
Jul 19 2021 | AWS Security Blog | EKS, ACM
TLS-enabled Kubernetes clusters with ACM Private CA and Amazon EKS
Jul 19 2021 | AWS Security Blog | EKS, ACM
Encrypt Global Data Client-Side with AWS KMS Multi-Region Keys
Jun 16 2021 | AWS Security Blog | KMS
How-to Create a Notification Workflow from Sensitive Data Discover with Amazon Macie, Amazon EventBridge, AWS Lambda, and Slack
Jun 10 2021 | AWS Security Blog | Macie, S3
How-to Protect PII using Amazon S3 Object Lambda to Process and Modify Data during Retrieval
Jun 04 2021 | AWS Database Blog | S3
How-to Implement a Hybrid PKI Solution on AWS
May 26 2021 | AWS Security Blog | ACM
Data Masking using AWS DMS
May 25 2021 | AWS Database Blog | DMS, RDS, S3
How-to Use AWS Secrets Manager to Simplify the Management of Private Certificates
Jan 07 2021 | AWS Security Blog | Secrets Manager
Deploy an Automated ChatOps Solution for Remediating Amazon Macie findings
Jan 05 2021 | AWS Security Blog | Macie
Discovering Sensitive Data in AWS CodeCommit with AWS Lambda
Jan 04 2021 | AWS Compute Blog | CodeCommit
Detecting Sensitive Data in DynamoDB with Macie
Dec 11 2020 | AWS Security Blog | DynamoDB, Macie
Implementing Fine-Grained Access Control in Amazon Elasticsearch Service
Dec 09 2020 | AWS Security Blog | Elasticsearch, Cognito
Architecting for Database Encryption on AWS
Oct 08 2020 | AWS Security Blog | RDS, KMS
Discover sensitive data by using custom data identifiers with Amazon Macie
Aug 26 2020 | AWS Security Blog | Macie
How to use AWS Config to determine compliance of AWS KMS key policies to your specifications
Aug 20 2020 | AWS Security Blog | KMS
How-to Secure deployment of Amazon SageMaker resources
Aug 03 2020 | AWS Security Blog | SageMaker, IAM
Securing and Accessing Secrets from Lambda@Edge using AWS Secrets Manager
Jul 20 2020 | AWS Network Blog | CloudFront, Secrets Manager
How-to Set Up Passwordless Login from Amazon EC2 Windows and Linux Instances to Amazon RDS Oracle Databases
Jul 20 2020 | AWS Database Blog | RDS
How to Retroactively Encrypt Existing Objects in Amazon S3 using S3 Inventory, Amazon Athena, and S3 Batch Operations
Jul 13 2020 | AWS Security Blog | S3
How to Use Resource-Based Policies in the AWS Secrets Manager Console to Securely Access Secrets Across AWS Accounts
Jul 10 2020 | AWS Security Blog | Secrets Manager
Customizing security parameters on Amazon RDS for SQL Server
Jun 15 2020 | AWS Database Blog | RDS
AWS Secrets Controller: Integrating AWS Secrets Manager with Kubernetes
Jun 15 2020 | AWS Containers Blog | EKS
Multi-Tenant Data Isolation with PostgreSQL Row Level Security
May 18 2020 | AWS Database Blog | RDS
Serving SSE-KMS Encrypted Content from S3 using CloudFront
May 15 2020 | AWS Network Blog | CloudFront, S3
Amazon Macie Features and How-To Guide
May 13 2020 | AWS News Blog | Macie
Enable Traffic Encryption between Services in AWS App Mesh using AWS Certificate Manager or Customer-Provided Certificates
Mar 13 2020 | AWS Containers Blog | AppMesh, ECS, EKS
Using EKS Encryption Provider Support for Defense-in-Depth
Mar 05 2020 | AWS Containers Blog | EKS
Simple DLP for AWS S3
Feb 18 2020 | darkbit.io/ | S3
Use Customer Managed KMS Keys to Encrypt DynamoDB Tables
Nov 26 2019 | AWS Database Blog | DynamoDB
Best Practices for Securing Sensitive Data in Amazon DynamoDB
Nov 11 2019 | AWS Database Blog | DynamoDB
Enable AWS Config Auto Remediation to enforce Amazon S3 bucket compliance
Oct 07 2019 | AWS Management Tools Blog | S3
Enable SSL Encrypted Connections to Microsoft SQL Server using AWS Certificate Manager Private Certificate Authority
Sep 25 2019 | AWS Database Blog | ACM, RDS
How-to Secure Amazon EMR clusters from unintentional network exposure with Block Public Access configuration
Sep 20 2019 | AWS Big Data Blog | EMR
Using IAM Role-Based Authentication to Amazon Aurora From Serverless Applications
Sep 13 2019 | AWS Database Blog | RDS, IAM
How-to Implement perimeter security in Amazon EMR using Apache Knox
Sep 06 2019 | AWS Big Data Blog | EMR
How to Protect data with Amazon S3 Object Lock
Sep 05 2019 | AWS Storage Blog | S3
How to S3 Batch Operations to Encrypt Existing S3 Objects
Aug 19 2019 | AWS Storage Blog | S3
HTTP Cookie Based Authentication for CloudFront with Lambda@Edge and Cognito
Aug 16 2019 | AWS Network Blog | CloudFront, Lambda
How to Manage Encryption for Amazon RDS Instances and Snapshots with AWS KMS
Aug 07 2019 | AWS Database Blog | RDS
How to Use Secrets Manager in CloudFormation to Generate, Store or Retrieve Passwords
Jul 02 2019 | AWS Infrastructure & Automation Blog | Secrets Manager, CloudFormation
How to securely provide database credentials to Lambda functions by using AWS Secrets Manager
Jun 06 2019 | AWS Security Blog | Secrets Manager, RDS
How to Launch Encrypted EBS-backed EC2 Instances from Unencrypted AMIs
May 13 2019 | AWS Security Blog | EC2, KMS
Best Practices for Securing Sensitive Data in Amazon RDS
Apr 03 2019 | AWS Datbase Blog | RDS
Best Practices for Securing Amazon EMR
Dec 14 2018 | AWS Big Data Blog | EMR, IAM
Use AWS Secrets Manager to rotate credentials for all Amazon RDS database types, including Oracle
Aug 29 2018 | AWS Security Blog | RDS, Secrets Manager
Configure Secrets Manager for MongoDB
Jul 07 2018 | sanderknape.com | Secrets Manager
How to use IAM Multifactor Authentication to protect RDS Resources from Deletion
Jun 24 2018 | AWS Database Blog | IAM, RDS
Use AWS Config to Monitor for and Respond to Amazon S3 Buckets Allowing Public Access
May 01 2018 | AWS Security Blog | S3, Config
Serverless Anti-Virus Scanning solution for S3
Sep 28 2017 | github.com/upsidetravel | S3

Threat Detection

How-to Customize Behavior of AWS Managed Rules for AWS WAF
Dec 10 2021 | AWS Security Blog | WAF
How-to Use CloudTrail to Identify Unexpected Behaviors in Individual Workloads
Dec 08 2021 | AWS Security Blog | CloudTrail
How-to Correlate Security Findings with AWS Security Hub and Amazon EventBridge
Oct 25 2021 | AWS Security Blog | Security Hub
How-to Improve Visibility into AWS WAF with Anomaly Detection
Sep 17 2021 | AWS Security Blog | WAF
How-to Automate Forensic Disk Collection in AWS
Aug 24 2021 | AWS Security Blog | EC2
How-to Protect Amazon EKS Web Apps with AWS WAF
Aug 02 2021 | AWS Container Blog | WAF, EKS
How-to Implement the Three Most Important AWS WAF Rate-Based Rules
Jul 22 2021 | AWS Security Blog | WAF
Automatically Block Suspicious Traffic with AWS Network Firewall and Amazon GuardDuty
Mar 16 2021 | AWS Security Blog | GuardDuty, Network Firewall
Enabling Amazon GuardDuty in AWS Control Tower using Delegated Administrator
Oct 08 2020 | AWS Management Blog | GuardDuty, Control Tower
How to Create a Centralized Dashboard for AWS WAF Logs
Jul 08 2020 | AWS Security Blog | WAF
How to use AWS Managed Rules for AWS WAF
Nov 25 2019 | AWS Security Blog | WAF
Best Practices for Setting Up and Using AWS Security Hub
Aug 23 2019 | AWS Security Blog | Security Hub
Analyzing AWS WAF logs with Amazon ES, Amazon Athena, and Amazon QuickSight
Aug 02 2019 | AWS Big Data Blog | VPC
How to Trim Unnecessary AWS WAF logs with Amazon Kinesis Firehose transformations
Apr 09 2019 | AWS Security Blog | CloudFormation
Enabling serverless security analytics using AWS WAF full logs, Amazon Athena, and Amazon QuickSight
Mar 28 2019 | AWS Security Blog | WAF, QuickSight
Integrate Cloud Custodian with AWS Security Hub
Nov 29 2018 | AWS Open Source Blog | Security Hub, Cloud Custodian
Protecting your API using AWS WAF
Nov 19 2018 | AWS Compute Blog | API Gateway, WAF
Scanning Docker Images for Vulnerabilities using Clair, Amazon ECS, ECR, and AWS CodePipeline
Nov 11 2018 | AWS Compute Blog | ECS, CodePipeline
How to analyze AWS WAF logs using Amazon Elasticsearch Service
Oct 30 2018 | AWS Security Blog | Elasticsearch, WAF
Visualizing Amazon GuardDuty findings
Sep 06 2018 | AWS Security Blog | GuardDuty
Automate the import of third-party threat intelligence feeds into Amazon GuardDuty
Aug 17 2018 | AWS Security Blog | GuardDuty
How to use Amazon GuardDuty and AWS Web Application Firewall to automatically block suspicious hosts
Aug 03 2018 | AWS Security Blog | GuardDuty, WAF
AWS Honeytokens: Breach Detection At Scale With PROJECT SPACECRAB
Oct 19 2017 | developer.atlassian.com | AWS
Serverless Anti-Virus Scanning solution for S3
Sep 28 2017 | github.com/upsidetravel | S3
Set Up Warning Detectors Using AWS Access Keys as Honeytokens
Nov 30 2016 | blog.rapid7.com | AWS

Automatic Remediation

How-to Remediate Noncompliant AWS Config Rules with AWS Systems Manager Automation Runbooks
Jun 14 2021 | AWS Management Blog | Config
How-to Create a Jira Issue using an AWS Config Remediation Action
Jun 14 2021 | AWS Management Blog | Config
How-to Monitor Amazon EventBridge Events in Slack channels with AWS Chatbot
Jun 08 2021 | AWS Management Blog | Chatbot, EventBridge, CloudWatch
How-to Auto-Remediate Internet Accessible Ports with AWS Config and AWS System Manager
Mar 16 2021 | AWS Security Blog | Config
Automatically Block Suspicious Traffic with AWS Network Firewall and Amazon GuardDuty
Mar 16 2021 | AWS Security Blog | GuardDuty, Network Firewall
How-to Automate Amazon EC2 Instance Isolation by using Tags
Mar 01 2021 | AWS Security Blog | EC2
How to Automate Incident Response in the AWS Cloud for EC2 Instances
Oct 20 2020 | AWS Security Blog | WAF, CloudFront, Secrets Manager
Implement Automatic Drift Remediation for AWS CloudFormation using Amazon CloudWatch and AWS Lambda
Jul 23 2020 | AWS Management Blog | CloudFormation
Automatic Remediation for Aged IAM Access Keys using AWS Config
Jun 22 2020 | AWS Management Blog | Systems Manager, Config, IAM
How to Perform Automated Incident Response in a Multi-Account Environment
Jun 01 2020 | AWS Security Blog | GuardDuty, Security Hub, Systems Manager
Enable Automatic Logging of AWS WAF Web ACLs by Using AWS Config
Apr 10 2020 | AWS Security Blog | WAF, Config
Remediating Non-Compliant AWS Service Catalog Products using AWS Config
Apr 09 2020 | AWS Management Blog | Service Catalog
How-to Automate Response and Remediation with AWS Security Hub
Jan 29 2020 | AWS Security Blog | AWS, Security Hub
Auto Remediation Example Using Amazon GuardDuty and Security Hub
Nov 26 2019 | AWS Security Blog | Security Hub, GuardDuty, EventBridge
Enable AWS Config Auto Remediation to enforce Amazon S3 bucket compliance
Oct 07 2019 | AWS Management Tools Blog | S3
GDPatrol: A Serverless Security Orchestration Automation and Response Framework for AWS GuardDuty.
Aug 20 2018 | siemdetection.com | AWS, GuardDuty
Use AWS Config to Monitor for and Respond to Amazon S3 Buckets Allowing Public Access
May 01 2018 | AWS Security Blog | S3, Config
Automatically Revert and Receive Notifications About Changes to Your Amazon VPC Security Groups
Oct 11 2017 | AWS Security Blog | EC2, VPC

Billing

Trends Dashboard with AWS Cost and Usage Reports, Amazon Athena and Amazon QuickSight
Jun 10 2021 | AWS Cost Management Blog | Cost & Usage Reports
How-to Schedule Amazon RDS Stop and Start using AWS Lambda
Jun 07 2021 | AWS Database Blog | RDS
Cost Tagging and Reporting with AWS Organizations
May 12 2021 | AWS Cost Management Blog | Tags, Organizations
Cost Reporting Based on AWS Organizations Account ID Tags
Mar 04 2021 | AWS Cost Management Blog | Organizations
How to Track Costs in Multi-Tenant Amazon EKS Clusters using Kubecost
Jul 27 2020 | AWS Containers Blog | EKS
How to Organize Cost and Usage Data with AWS Cost Categories
May 06 2020 | AWS Cost Management Blog | Cost Explorer, Budget
Manage Amazon Elastic File System (EFS) Costs using AWS Budgets
Feb 25 2020 | AWS Cost Management Blog | Budgets, EFS
How to Create a Budget for Service Catalog Products
Sep 13 2019 | AWS Cost Management Blog | Budgets
How to Send Budget Alerts to Slack or Chime using AWS Chatbot
Jul 31 2019 | AWS Cost Management Blog | Budgets
How to Query AWS Cost and Usage Report using Amazon Athena
Jul 08 2019 | AWS Cost Management Blog | AWS
How to Generate Excel Cost Reports with Graphs Using the AWS Cost Explorer API
Oct 8 2018 | AWS Code Samples | Cost Explorer
Query and Visualize AWS Cost and Usage Data Using Amazon Athena and Amazon QuickSight
Sep 27 2017 | AWS Big Data Blog | AWS

EC2 Instance Security

How-to Use EC2 Instance Connect to Provide Secure SSH Access to EC2 Instances with Private IP Addresses
May 13 2021 | AWS Security Blog | EC2
Testing EC2 Image Builder pipelines using Chef InSpec
Feb 04 2021 | AWS Compute Blog | EC2
How to Visualize Multi-Account Amazon Inspector Findings with Amazon Elasticsearch Service
Dec 23 2020 | AWS Security Blog | Inspector, Elasticsearch
How to Enforce AWS Network Firewall Protections at Scale with AWS Firewall Manager
Dec 04 2020 | AWS Security Blog | Network Firewall, Firewall Manager
Automate AWS Firewall Manager onboarding using AWS Centralized WAF and VPC Security Group Management solution
Oct 20 2020 | AWS Security Blog | VPC, EC2, Firewall Manager
How to Automate Incident Response in the AWS Cloud for EC2 Instances
Oct 20 2020 | AWS Security Blog | WAF, CloudFront, Secrets Manager
Use AWS Firewall Manager to Deploy Protection at Scale in AWS Organizations
Oct 14 2020 | AWS Security Blog | VPC, EC2, Firewall Manager, WAF
Simplify Network Routing and Security Administration with VPC Prefix Lists
Sep 16 2020 | AWS Network Blog | VPC
How-to Build STIG-compliant Amazon Machine Images using Amazon EC2 Image Builder
Aug 12 2020 | AWS Security Blog | EC2
Software Patch Using AWS Management Tools CI/CD and Terraform
Jun 23 2020 | AWS Management Blog | Systems Manager, EC2
Continuous Compliance Monitoring for EC2 Instances with Chef InSpec and AWS Security Hub
Feb 26 2020 | AWS Security Blog | Systems Manager, EC2
Automate OS Image Build Pipelines with EC2 Image Builder
Dec 02 2019 | AWS News Blog | EC2, Image Builder, Inspector
Use EC2 Instance Metadata Service v2 for Protection Against SSRF and other Attacks
Nov 19 2019 | AWS Security Blog | EC2
How to Create a Notification when AMI Permissions Change
Sep 23 2019 | AWS Compute Blog | EC2
Setting Up Port Forwarding to EC2 Instances Using AWS System Manager Sessions Manager
Aug 28 2019 | AWS News Blog | EC2, Systems Manager
Auto-populate instance details by integrating AWS Config with your ServiceNow CMDB
Aug 09 2019 | AWS Management Tools Blog | EC2, Config, ServiceNow
Use EC2 Instance Connect to Manage SSH to Instances with Short Lived Keys
Jun 27 2019 | AWS Compute Blog | EC2
How to Launch Encrypted EBS-backed EC2 Instances from Unencrypted AMIs
May 13 2019 | AWS Security Blog | EC2, KMS
How to eliminate EC2 keypairs from password retrieval of provisioned Windows instances using Secrets Manager and CloudFormation
Jan 28 2019 | AWS Security Blog | EC2, Secrets Manager
How to Create an Opportunistic IPSec Mesh between EC2 Instances
Dec 20 2018 | AWS Security Blog | EC2, VPN, VPC
How to patch Windows EC2 instances in private subnets Using AWS Systems Manager
Dec 14 2018 | AWS Management Tools Blog | Systems Manager, EC2
Reporting and remediating EC2 instances that AWS Systems Manager doesn’t list as managed instances
Dec 5 2018 | AWS Management Tools Blog | Systems Manager, EC2
Run compliance enforcement and view compliant and non-compliant instances using AWS Systems Manager and PowerShell DSC
Nov 20 2018 | AWS Management Tools Blog | Systems Manager, EC2
Extend golden AMIs with AWS Marketplace Private Image Build
Nov 8 2018 | AWS Marketplace Blog | Marketplace, EC2
Start an Interactive Browser-Based Bash or PowerShell Session to Instances using Systems Manager
Sep 11 2018 | AWS Blog | EC2, Systems Manager
Restrict Access to EC2 Instances Based on Tags
Aug 07 2018 | cloudonaut.io | EC2, IAM, Tags
Preventing blacklisted applications with AWS Systems Manager and AWS Config
Apr 26 2018 | AWS Management Tools Blog | EC2, Systems Manager, Config
Using AWS Systems Manager to run compliance scans using InSpec by Chef
Mar 07 2018 | AWS Management Tools Blog | EC2, Systems Manager
Automate Patching Linux Workloads on AWS
Feb 12 2018 | AWS Security Blog | EC2, Systems Manager
How to secure infrequently used EC2 instances with AWS Systems Manager
Jan 31 2018 | AWS Management Tools Blog | EC2, Systems Manager
Automate Patch, Inspect, and Protect Microsoft Windows Workloads on AWS
Nov 22 2017 | AWS Security Blog | EC2, Systems Manager, Inspector
Monitor and Visualize Failed SSH Access Attempts to Amazon EC2 Linux Instances
Aug 02 2017 | AWS Security Blog | EC2, CloudWatch
Auto Deploy Inspector Agents on EC2 Instances When Launched
Sep 1 2016 | AWS Labs | Systems Manager, Inspector

Identify & Access Management

How to Define Least-Privileged Permissions for Actions Called by AWS services
Feb 21 2020 | AWS Security Blog | IAM

Offensive Security

Exploiting AWS ECR and ECS with the Cloud Container Attack Tool (CCAT)
Aug 27 2019 | rhinosecuritylabs | ECS, ECR, EKS
Escalating AWS IAM Privileges Part 2
Jul 23 2019 | rhinosecuritylabs | IAM
MFA Phishing of IAM Users (Part 2): Establishing Persistence
Jul 16 2019 | rhinosecuritylabs | IAM
How to Phish AWS IAM Users with Virtual MFA Enabled
Jun 23 2019 | rhinosecuritylabs | IAM
Escalating AWS IAM Privileges with an Undocumented CodeStar API
Jun 18 2019 | rhinosecuritylabs | IAM
Exploiting Common Serverless Security Flaws in AWS
May 17 2019 | thetestlabs.io | Lambda
Lateral movement between AWS accounts - Abusing trust relationships
Feb 02 2019 | summitroute.com/blog | IAM
How to Compromise AWS IAM Credentials
Dec 01 2018 | rhinosecuritylabs | IAM
Detecting AWS HoneyTokens by Bypassing CloudTrail and IAM Enumeration
Oct 2 2018 | rhinosecuritylabs | Config
Enumerating AWS Roles through "AssumeRole".
Aug 29 2018 | rhinosecuritylabs | AWS, IAM
Pacu: The Open Source AWS Exploitation Framework
Aug 21 2018 | rhinosecuritylabs | AWS
Privilege Escalation in AWS
Aug 08 2018 | rhinosecuritylabs | AWS
Disrupting AWS Logging
Apr 29 2017 | blog.thinkst.com | AWS, CloudTrail
Backdooring an AWS account
Jul 09 2016 | danielgrzelak.com | AWS