Brought to you by we45
This repository contains the list of exercises intended for the "Hacking and Defending your applications in AWS" workshop presented at the Information Security Symposium at the University of California (Davis), June 2019.
These hands-on labs should give a high level introduction to some of the popular AWS services used by developers and how to leverage security best practices and simulate vulnerabilities that could potentially compromise sensitive information within the apps.
The following list of topics would be the key focus areas of this workshop.
- AWS Cli
- Terraform Intro
- EC2
- IAM
- Vulnerability Assessment within AWS using Inspector
- S3
- Logging & Monitoring using Cloudwatch/Cloudtrail
