Unlock AWS Security: DevSecOps, AWS Services & Terraform Guide

Description

Cloud Security in AWS | Implement SAST, SCA and DAST in AWS DevSecOps Pipeline(Maven, Gradle) & Security Services in AWS What you'll learn Learn DevSecOps implementation in AWS and various AWS Security Services Learn to implement End to End DevSecOps Pipeline in AWS that include SAST, DAST & SCA Learn AWS CodeBuild and integration with CodePipeline Learn AWS CodeCommit and connect with Git Bash Learn AWS IAM and assign inline policies to IAM roles Learn AWS Security and implementation of AWS Security services Learn to implement quality gates in AWS Code Pipeline using Sonar Learn to integrate Sonar and Snyk in AWS Code Pipeline Learn to create DevSecOps Engineer CV Learn to run automated s 00:00 Introduction and Course Agenda (06:04) 06:04 About the Course (01:18) 07:22 Basic Security Terms (03:09) 10:31 What is DevSecOps? (02:16) 12:47 Tools Used for DevSecOps – Market Overview (05:16) 18:03 Tools Used for DevSecOps in AWS (02:19) 20:22 Create AWS Free Tier Account (02:05) 22:27 Install Git on Windows Machine (04:52) 27:19 CodeCommit Repositories Not Available to New Customers (00:56) 28:15 Connect Git Bash with AWS CodeCommit (07:43) 35:58 Knowledge Check — 5 Questions 35:58 Push Vulnerable App Code to CodeCommit (03:07) 39:05 What is SonarCloud & Benefits? (01:43) 40:48 Add buildspec.yml to Integrate SonarCloud (04:43) 45:31 Create SonarCloud Project & Update YAML (04:46) 50:17 Create CodeBuild Project & Run SAST via SonarCloud (05:55) 56:12 Fix Code Coverage Issues in SonarCloud (04:24) 1:00:36 Move Sonar Token to AWS Secrets Manager (06:55) 1:07:31 Implement Quality Gates in Sonar (09:37) 1:17:08 Create CodePipeline & Automate CodeBuild (03:42) 1:20:50 What is Snyk & Benefits? (02:04) 1:22:54 Snyk Report Issue with CodePipeline (00:19) 1:23:13 Integrate Snyk in CodePipeline (04:01) 1:27:14 What is OWASP ZAP & Benefits? (01:45) 1:28:59 Configure CodeBuild to Store Artifacts in S3 (02:03) 1:31:02 Integrate OWASP ZAP in DevSecOps Pipeline (07:28) 1:38:30 Knowledge Check — 6 Questions 1:38:30 Security Engineer 1:1 Discussion 1:38:30 Case Study: Understanding Requirements (02:44) 1:41:14 Hands-On: Integrate SAST, SCA & DAST (07:38) 1:48:52 Execute End-to-End Pipeline & Review Logs (04:43) 1:53:35 Write DevSecOps Pipeline for Gradle — Quiz (1 question) 1:53:35 Create JIRA Account (04:06) 1:57:41 Report SAST Issues to JIRA via SonarCloud (05:47) 2:03:28 Report SCA Issues to JIRA via Snyk (05:01) 2:08:29 Report DAST Issues to JIRA via OWASP ZAP (03:53) 2:12:22 Integrate JIRA with SonarCloud (13:20) 2:25:42 AWS Security Hub Basics (02:07) 2:27:49 Implement AWS Security Hub (06:30) 2:34:19 Amazon Inspector — Basics (03:42) 2:38:01 Amazon Inspector Classic — Create Assessment (09:34) 2:47:35 Amazon Detective Basics (02:05) 2:49:40 GuardDuty Basics (02:28) 2:52:08 Review GuardDuty Findings (06:25) 2:58:33 IAM Access Analyzer Basics (01:50) 3:00:23 Amazon Macie Basics — Part 1 (01:32) 3:01:55 Amazon Macie Basics — Part 2 (01:37) 3:03:32 AWS Audit Manager Basics (03:40) 3:07:12 Create Assessment in Audit Manager (03:20) 3:10:32 Review All Security Hub Integrations (05:08) 3:15:40 Implement AWS WAF (09:57) 3:25:37 Create Regex Pattern Set & Assign to WAF ACL (05:54) 3:31:31 Knowledge Check — 6 Questions 3:31:31 Download Terraform & Configure PATH (03:46) 3:35:17 Create AWS Admin User (02:50) 3:38:07 Install AWS CLI & Authenticate (05:41) 3:43:48 Install VS Code (02:45) 3:46:33 Clone Terraform Repo (02:46) 3:49:19 Open Terraform Repo in VS Code (03:18) 3:52:37 Understand Terraform Script (06:12) 3:58:49 Understand Shell Script for EC2 Software Install (04:02) 4:02:51 Understand Variables File & Create Key Pair (05:35) 4:08:26 VPC ID for Infra Creation (00:10) 4:08:36 Run Terraform to Create AWS Infrastructure (08:33) 4:17:09 Create EKS Cluster with eksctl (03:02) 4:20:11 Cleanup Resources using eksctl & Terraform (03:06) 4:23:17 Run IaC Security Scan with Bridgecrew (08:14) 4:31:31 Knowledge Check — 4 Questions 4:31:31 What is CSPM? (01:12) 4:32:43 Create Qualys TotalCloud Account (07:43) 4:40:26 Scan AWS Infra for Misconfigurations (11:14) 4:51:40 Docker Commands Notes (00:29) 4:52:09 Sample Dockerfile (00:10) 4:52:19 Kubernetes Commands Notes (00:20) 4:52:39 Sample Kubernetes Deployment File (00:10) 4:52:49 Knowledge Check — 5 Questions