First is to highlight the security issues that AWS occasionally have:
https://alas.aws.amazon.com/alas2.html
https://aws.amazon.com/security/security-bulletins/
In particular is the ROBOT attack:
https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-bock.pdf
https://www.usenix.org/conference/usenixsecurity18/presentation/bock
Amazon Web Services: Overview of Security Processes:
https://d0.awsstatic.com/whitepapers/Security/Intro_Security_Practices.pdf
https://cloudacademy.com/blog/amazon-web-services-security/
https://d36cz9buwru1tt.cloudfront.net/aws-gov-summit-2011/Security_Keynote_CJ_Moses.pdf
https://d1.awsstatic.com/whitepapers/aws-security-best-practices.pdf
https://d1.awsstatic.com/whitepapers/Security/AWS_Security_Checklist.pdf
https://www.isc2denver.org/sites/default/files/AWS_Security_Best_Practices.pdf
https://www.owasp.org/images/3/33/Aws_security_joel_leino.pdf
https://www.threatstack.com/blog/what-you-need-to-know-about-the-top-7-aws-security-issues
https://aws.amazon.com/security/
Tips for AWS firewall:
https://aws.amazon.com/blogs/compute/automating-security-group-updates-with-aws-lambda/
https://blog.trendmicro.com/top-10-aws-security-tips-5-create-restrictive-firewall-policies/
AWS IoT Security:
Application Development How to:
https://medium.com/@CharlesBordet/how-to-deploy-a-shiny-app-on-aws-part-1-4893d0a7432f
https://towardsdatascience.com/deploying-a-python-web-app-on-aws-57ed772b2319
https://www.thinxtream.com/whitepapers/thinxtream-iot-security-wp-005.pdf
https://docs.aws.amazon.com/AWSJavaScriptSDK/latest/index.html
Development APIs and setup:
https://aws.amazon.com/sdk-for-node-js/
https://github.com/aws/aws-sdk-js
https://docs.aws.amazon.com/sdk-for-javascript/v2/developer-guide/getting-started-nodejs.html
https://docs.aws.amazon.com/AWSJavaScriptSDK/latest/index.html
Fuzzer:
https://github.com/MozillaSecurity/octo
https://github.com/MozillaSecurity/funfuzz
You must be logged in to post a comment.