1. CloudTrail – Overview Okay, so we are getting into Cloud Trail, and with Cloud Trail, we’ll be able to track all the API calls made within our accounts. So let’s go to the Cloud Trail and create our first trail. So Cloud Trail will record by default all the actions in our accounts. Okay? […]

27. Secrets Manager – Hands On So now let’s look into a service called Secrets Manager. And the name is extremely obvious for one eight of the services that will be easily storing secrets into aws. And so with this you can rotate them, manage them, and you retrieve them with api calls for their […]

24. GuardDuty – Overview So guard duty is a very special service that’s kind of hard to understand because we don’t have to do much. But it is an intelligent threat discovery, basically meant to protect your aws accounts. That means that it’s going to run some analysis in the background. You don’t have to […]

21. Trusted Advisor – Overview So now let’s talk about trusted advisor. And Trusted Advisor for us is going to be a central service in automating the limits notifications in case you do reach them, and automating some secured events as well. So when you go into your account and you go to Trusted Advisor […]

19. EC2 Instance Compliance So we’ve seen a lot of different services here for compliance and so I want to contrast them one with the other by looking at a theory of the easyto instance compliance so we can understand really how config is different from service catalog and different from Inspector and so on. […]

17. Inspector – Setup & Run So now let’s look at a service that is going to be extremely important when you create amis and when you need to do security analysis of your systems. It’s called Amazon Inspector. And so Amazon Inspector enables you to analyze the behavior of your illus resources and helps […]

13. Config – Automations So now let’s talk about all the automations you can do on top of aws Config. And so the first thing is that you have sms notifications that are available for aws config but these are all the notifications for all the things happening within the service aws config. So this […]

11. Config – Overview So let’s start learning AWS config. So it is such an important service and it comes up a lot at the exam. And the reason is it provides you an audit trail and compliance of your resources and also gives you a way to look at the configuration of these resources […]

8. SSM – Inventory Now let’s look at inventory. And inventory is used to have a list of all the stuff running onto our instances that is tracked by ssm agents. So we’ll click on Setup inventory and we’ll name this inventory association and we’ll select all managed instances in this accounts and we’ll collect […]

5. SSM – Run Command So back in Systems Manager we have our four instances being managed by SSM and we want to run some stuff on them. So why don’t we go and start with the Run Command. So Run Command, as the name indicates, allows you to run commands on the instances that […]