You’ll notice there is also an AWS CloudFormation template that makes it easy to test the solution in your own AWS account. This post walks through how to set up the solution. There is only one receiver in this example, but the receiving process can be duplicated multiple times across multiple accounts.
In this post you will see references to the Sender account and the Receiver account. This solution will use the Admin protection managed rule for demonstration purposes. AWS WAF managed rules provide an easy way to mitigate and record the details of common web exploit attempts. This solution can be an effective way to block traffic known to be malicious across accounts and public endpoints. AWS WAF helps protect against common web exploits and gives you control over which traffic can reach your application.Īttempted exploitation blocked by AWS WAF provides a data source on potential attackers that can be shared proactively across AWS accounts. In this post, I demonstrate a method for collecting and sharing threat intelligence between Amazon Web Services (AWS) accounts by using AWS WAF, Amazon Kinesis Data Analytics, and Amazon EventBridge. December 4, 2020: This post has been updated to include links to the CloudFormation templates used in the solution.
0 kommentar(er)
