AWS Security Solutions

Last Updated: 7 days ago

Infrastructure Security

How to Centralize DNS Management of Hybrid Cloud with Amazon Route 53 and AWS Transit Gateway
May 03 2019 | AWS Network Blog | VPC, Route 53, Transit Gateway
Setting up OpenVPN Access Server in Amazon VPC
Mar 26 2019 | AWS Marketplace Blog | VPC, OpenVPN
Bulid a Serverless OpenVPN Certificate Authority on AWS
Mar 07 2019 | medium.com/empathybroker | VPC
How to Create an Opportunistic IPSec Mesh between EC2 Instances
Dec 20 2018 | AWS Security Blog | EC2, VPN, VPC
AWS WAF Security Automations
Dec 07 2018 | AWS Answers | WAF
Protecting your API using AWS WAF
Nov 19 2018 | AWS Compute Blog | API Gateway, WAF
Create On-Demand Secure Partitions for Application using AWS Service Catalog
Oct 11 2018 | AWS Management Tools Blog | IAM, Service Catalog
Restrict Access to EC2 Instances Based on Tags
Aug 07 2018 | cloudonaut.io | EC2, IAM, Tags
Automate Security Group Updates with AWS Lambda
Oct 24 2017 | AWS Compute Blog | EC2
Basic HTTP Authentication for a Static Website Hosted on AWS S3
Aug 30 2017 | hackernoon.com/@lmakarov | S3, CloudFront, Lambda
Implementing DevSecOps Using AWS CodePipeline
Mar 23 2017 | AWS Security Blog | CodePipeline, CloudFormation
IP Whitelisting with Amazon API Gateway
Jul 09 2016 | lobster1234.github.io | API Gateway
How to Add URL Filtering to Your NAT Instance with Squid
Jan 26 2016 | AWS Security Blog | EC2

Identity & Access Management

How to Prompt Users to Reset their AWS Managed Microsoft AD Passwords Proactively
Jun 20 2019 | AWS Security Blog | Managed Active Directory
How to Securely Store Credentials using AWS Secrets Manager with AWS Fargate
Jun 17 2019 | AWS Compute Blog | Secrets Manager, Fargate
How to Use Okta as an identity provider with AWS Transfer for SFTP
May 30 2019 | AWS Storage Blog | IAM, AWS SFTP
How to Enable federation for Amazon Connect with AWS Single Sign-On
May 30 2019 | AWS Contact Center Blog | Connect, IAM, SSO
How to Configure Single Sign-On for Amazon Connect Using Okta
May 01 2019 | AWS Contact Center Blog | Connect, IAM
How to Integrate Microsoft Azure MFA Server with Amazon WorkSpaces
Apr 29 2019 | AWS Desktop and Application Streaming Blog | Workspaces
Create a Self-Service Portal for Amazon WorkSpaces End Users
Apr 22 2019 | AWS Desktop and Application Streaming Blog | Workspaces
How to Limit Access to Stream Amazon AppStream 2.0 Applications based on IP ranges
Apr 11 2019 | AWS Desktop and Application Streaming Blog | AppStream
How to Integrate Okta MFA with Amazon WorkSpaces
Apr 02 2019 | AWS Desktop and Application Streaming Blog | Workspaces
How to audit AWS IAM and Resource Policies
Mar 26 2019 | AWS Datbase Blog | IAM
How to rotate Amazon DocumentDB and Amazon Redshift credentials in AWS Secrets Manager
Mar 15 2019 | AWS Security Blog | Secrets Manager, Redshit, DocumentDB
How to Enable Secure Access to Kibana using AWS Single Sign-On
Jan 30 2019 | AWS Security Blog | Amazon Elasticsearch, SSO
Using AWS SSM Parameter Store With Git SSH Keys
Dec 20 2018 | alestic.com | SSM
Enable federation with AWS Single Sign-On and Amazon AppStream 2.0
Nov 20 2018 | AWS Desktop and Application Streaming Blog | SSO, AppStream
Automate replication of secrets in AWS Secrets Manager across AWS Regions
Nov 20 2018 | AWS Security Blog | Secrets Manager
Securing access to AMIs in AWS Marketplace
Nov 19 2018 | AWS Security Blog | IAM, Marketplace, EC2
How to rotate a non-RDS MySQL database secret using AWS Secrets Manager
Oct 8 2018 | AWS Security Blog | Secrets Manager, EKS
Using Federated Identities with AWS CodeCommit
Oct 5 2018 | AWS DevOps Blog | CodeCommit, SSO
Restrict Access to EC2 Instances Based on Tags
Aug 07 2018 | cloudonaut.io | EC2, IAM, Tags
Configure Secrets Manager for MongoDB
Jul 07 2018 | sanderknape.com | Secrets Manager
Control Access to AWS Regions using IAM policies
Apr 25 2018 | AWS Security Blog | AWS, IAM
Monitor AWS account activity in real-time
Feb 16 2018 | AWS Answers | AWS, IAM
How to Enable Multi-Factor Authentication for AWS Services such as Amazon Workspaces and QuickSight
Feb 13 2017 | AWS Security Blog | Workspaces, QuickSight, AWS Managed AD

Offensive Security

Exploiting Common Serverless Security Flaws in AWS
May 17 2019 | thetestlabs.io | Lambda
How to Compromise AWS IAM Credentials
Dec 01 2018 | rhinosecuritylabs | IAM
Enumerating AWS Roles through "AssumeRole".
Aug 29 2018 | rhinosecuritylabs | AWS, IAM
Pacu: The Open Source AWS Exploitation Framework
Aug 21 2018 | rhinosecuritylabs | AWS
Privilege Escalation in AWS
Aug 08 2018 | rhinosecuritylabs | AWS
Disrupting AWS Logging
Apr 29 2017 | blog.thinkst.com | AWS, CloudTrail
Backdooring an AWS account
Jul 09 2016 | danielgrzelak.com | AWS

Data Protection

Logging & Monitoring

How to Query AWS Service Logs on S3 Using Amazon Athena
May 29 2019 | AWS Big Data Blog | S3, CloudTrail, VPC, ALB, ELB, CloudFront
Set up Centralised Logging for Lambda@Edge
May 10 2019 | medium.com/@stefanroman | CloudFront, Lambda
How to Monitor Amazon WorkSpaces Login Connections
Mar 04 2019 | AWS Desktop and Application Streaming Blog | Workspaces
How to visualize Amazon GuardDuty findings with Amazon QuickSight
Feb 18 2019 | AWS Security Blog | GuardDuty, QuickSight
How to Enable Forward AWS Security Hub Events to Slack or Email
Dec 13 2018 | AWS Partner Blog | Security Hub
How to analyze AWS WAF logs using Amazon Elasticsearch Service
Oct 30 2018 | AWS Security Blog | Elasticsearch, WAF
Visualizing Amazon GuardDuty findings
Sep 06 2018 | AWS Security Blog | GuardDuty
How to Enable Forward Amazon GuardDuty Findings to Slack
Jul 28 2018 | AWS Code Samples | Security Hub
AWS Service Limit Monitoring
Jun 13 2018 | AWS Answers | AWS
How to create custom alerts with Amazon Macie
Jun 07 2018 | AWS Security Blog | Macie
Clean up logs in S3 Buckets using Athena
May 14 2018 | cloudonaut.io | S3, Athena
Collect custom metrics from EC2 instances
May 11 2018 | https://medium.com/@zeebaig | EC2, CloudWatch
Central Logging Solution for Applications in Multi-Account Environments
Mar 02 2018 | AWS Architecture Blog | AWS, Kinesis, CloudWatch
Monitor AWS account activity in real-time
Feb 16 2018 | AWS Answers | AWS, IAM
CIS Benchmark on AWS
Dec 04 2017 | AWS Quick Starts | AWS
CloudWatch Alarms to Slack Integration
Nov 01 2017 | cloudonaut.io | CloudWatch, Slack
AWS Honeytokens: Breach Detection At Scale With PROJECT SPACECRAB
Oct 19 2017 | developer.atlassian.com | AWS
Cost Optimization: EC2 Right Sizing
Dec 01 2016 | AWS Answers | EC2
Cost Optimization Monitor
Nov 01 2016 | AWS Answers | AWS

EC2 Instance Security

How to Share Encrypted AMIs Across Accounts
May 13 2019 | AWS Security Blog | EC2, KMS
How to Create an Opportunistic IPSec Mesh between EC2 Instances
Dec 20 2018 | AWS Security Blog | EC2, VPN, VPC
How to patch Windows EC2 instances in private subnets Using AWS Systems Manager
Dec 14 2018 | AWS Management Tools Blog | Systems Manager, EC2
Centralized multi-account and multi-Region patching with AWS Systems Manager Automation
Nov 19 2018 | AWS Management Tools Blog | Systems Manager, EC2
Extend golden AMIs with AWS Marketplace Private Image Build
Nov 8 2018 | AWS Marketplace Blog | Marketplace, EC2
Restrict Access to EC2 Instances Based on Tags
Aug 07 2018 | cloudonaut.io | EC2, IAM, Tags
Set Up a Golden AMI Pipeline
May 30 2018 | AWS Blog | EC2, Systems Manager, Inspector
Preventing blacklisted applications with AWS Systems Manager and AWS Config
Apr 26 2018 | AWS Management Tools Blog | EC2, Systems Manager, Config
Using AWS Systems Manager to run compliance scans using InSpec by Chef
Mar 07 2018 | AWS Management Tools Blog | EC2, Systems Manager
Automate Patching Linux Workloads on AWS
Feb 12 2018 | AWS Security Blog | EC2, Systems Manager
How to secure infrequently used EC2 instances with AWS Systems Manager
Jan 31 2018 | AWS Management Tools Blog | EC2, Systems Manager
Automate Patch, Inspect, and Protect Microsoft Windows Workloads on AWS
Nov 22 2017 | AWS Security Blog | EC2, Systems Manager, Inspector
Remediate Amazon Inspector Security Findings Automatically
Feb 02 2017 | AWS Security Blog | EC2, Inspector
Auto Deploy Inspector Agents on EC2 Instances When Launched
Sep 1 2016 | AWS Labs | Systems Manager, Inspector

Threat Detection

AWS WAF Security Automations
Dec 07 2018 | AWS Answers | WAF
Integrate Cloud Custodian with AWS Security Hub
Nov 29 2018 | AWS Open Source Blog | Security Hub, Cloud Custodian
Protecting your API using AWS WAF
Nov 19 2018 | AWS Compute Blog | API Gateway, WAF
How to analyze AWS WAF logs using Amazon Elasticsearch Service
Oct 30 2018 | AWS Security Blog | Elasticsearch, WAF
Visualizing Amazon GuardDuty findings
Sep 06 2018 | AWS Security Blog | GuardDuty
CIS Benchmark on AWS
Dec 04 2017 | AWS Quick Starts | AWS
AWS Honeytokens: Breach Detection At Scale With PROJECT SPACECRAB
Oct 19 2017 | developer.atlassian.com | AWS
Serverless Anti-Virus Scanning solution for S3
Sep 28 2017 | github.com/upsidetravel | S3

Management

Enable Self-Service, Secured Data Science using Amazon SageMaker Notebooks and AWS Service Catalog
Mar 29 2019 | AWS Management Tools Blog | SageMaker, Service Catalog
How to audit AWS IAM and Resource Policies
Mar 26 2019 | AWS Datbase Blog | IAM
Automate enabling AWS Security Hub in Multi-Account Environments
Jan 31 2019 | AWS Security Blog | Security Hub
Securing access to AMIs in AWS Marketplace
Nov 19 2018 | AWS Security Blog | IAM, Marketplace, EC2
How to Query for the latest Windows AMI ID using AWS SSM Parameter Store
Nov 17 2018 | AWS Management Tools Blog | Systems Manager, EC2
Create On-Demand Secure Partitions for Application using AWS Service Catalog
Oct 11 2018 | AWS Management Tools Blog | IAM, Service Catalog
How to Query for the latest Amazon Linux AMI IDs using AWS SSM Parameter Store
Jun 18 2018 | AWS Management Tools Blog | Systems Manager, EC2
AWS Service Limit Monitoring
Jun 13 2018 | AWS Answers | AWS
AWS Instance Scheduler
Feb 17 2018 | AWS Answers | EC2, RDS
How to Automate End-to-End Account Creation with AWS Organizations
Jul 24 2017 | AWS Security Blog | Organizations
Cost Optimization: EC2 Right Sizing
Dec 01 2016 | AWS Answers | EC2
Cost Optimization Monitor
Nov 01 2016 | AWS Answers | AWS

Billing