In this post, we’ll see how we can implement Path Based Rate Limiting Using AWS WAF. Reference: https://aws.amazon.com/blogs/security/three-most-important-aws-waf-rate-based-rules/ Step 1: Refer to https://faun.pub/integrating-aws-application-and-network-load-balancer-fot-static-ip-and-https-redirection-14913cc0487 and create EC2 instance with Apache installed, a target group and an internet ALB which listens on port 80.

In this post, we’ll see how we can access EFS As A Non Root User Inside ECS Container Using EFS Access Point. Note: We’ll be using ap-south-1 region. If you are using any other region make sure to change any reference to ap-south-1 accordingly. Also make sure you have configure…

Recently I had to create EC2 Lab servers for my DevOps batch’s students, so that they can practice the course content. To optimize the cost, I created a setup where the student can start the instance via an API call and that instance will automatically get stopped after a couple…

In https://aws.plainenglish.io/integrating-aws-config-and-lambda-to-revoke-unauthorised-changes-made-to-security-groups-b6fd5455031e, we saw how we can integrate AWS Config+Lambda to revoke SSH access given to 0.0.0.0/0 in the security groups. In this post, we’ll see how we can do the same for other ports also. Edit:Updated version of code with bug fixes and SES integration is available at https://raw.githubusercontent.com/vinycoolguy2015/awslambda/master/config_rule3.py

In this post, we’ll see how we can setup end to end SSL encryption with AWS Application Load Balancer. …

In this post, we’ll see how we can intergrate AWS Application Load Balancer with Network Load Balancer to get static IP for our domain and do HTTP to HTTPS redirection. Prerequisite: You need to have a domain name and Route53 records created for that,along with a VPC with Public/Private subnets. …

In this post, we’ll see how we can configure Split-view DNS With AWS Route53. Basically, we’ll setup our DNS records in such a way so that you get different response by hitting the same URL depending upon the fact that you are hitting the URL from within the VPC or…

In this post, we’ll see how we can update EC2 Launch Template of an autoscaling group to deploy new code. …

In this post, we’ll see how we can block Cross Site Scripting(XSS) attacks with AWS WAF. We’ll use OWASP Juice Shop application which is a vulnerable web applicaton and how we can exploit it and protect it with AWS WAF. Reference: https://medium.com/@neelampawar/tutorial-3-setup-web-application-security-protection-and-detection-lab-in-google-cloud-8d40962dd756 Step 1: Launch an EC2 instance with Amazon…