jassics/awesome-aws-security

# Awesome AWS Security [](https://awesome.re) 一份标准的精选列表，包含与 AWS Security 相关的链接、参考资料、书籍、视频和教程（免费或付费）、Exploit、CTF、黑客实践等。 _列表灵感来源于 [awesome](https://github.com/sindresorhus/awesome) 列表。_  ## 目录 [1. AWS 白皮书](#AWS-Whitepapers) [2. 书籍](#Books) [3. 视频](#Videos) [4. 在线教程/博客/演讲](#Online-TutorialsBlogsPresentations) [5. 在线课程（付费/免费）](#Online-Courses-PaidFree) [6. 实用工具](#Tools-of-Trade) [7. 安全实践与 CTF](#Security-Practice-and-CTFs) [8. AWS 安全公告重要问题](#AWS-Security-Bulleting-Important-Issues) [9. AWS 安全漏洞事件](#AWS-Security-Breaches) [10. 贡献者](#Contributors) ## AWS 白皮书 AWS 拥有与 AWS Security 相关的优秀白皮书列表。我们在这里添加了一些重要的内容。您可以随时在[这里](https://aws.amazon.com/security/security-learning/?whitepapers-main.sort-by=item.additionalFields.sortDate&whitepapers-main.sort-order=desc)查看更多更新或新的安全白皮书。 别忘了从[这里](https://aws.amazon.com/security/security-bulletins/) **收藏 AWS 安全公告** 以获取最新的漏洞新闻。 1. [AWS Overview](https://d1.awsstatic.com/whitepapers/aws-overview.pdf) - 了解 AWS 概述的重要白皮书之一 2. [Introduction to AWS Security Whitepaper](https://docs.aws.amazon.com/whitepapers/latest/introduction-aws-security/introduction-aws-security.pdf) 3. [AWS Well-Architected Security Pillar](https://docs.aws.amazon.com/wellarchitected/latest/security-pillar/wellarchitected-security-pillar.pdf) 4. [Introduction to Security By Design](https://d1.awsstatic.com/whitepapers/compliance/Intro_to_Security_by_Design.pdf) 5. [AWS Well Architected Framework](https://d1.awsstatic.com/whitepapers/architecture/AWS_Well-Architected_Framework.pdf) 6. [AWS Risk And Compliance Whitepaper](https://d0.awsstatic.com/whitepapers/compliance/AWS_Risk_and_Compliance_Whitepaper.pdf) 7. [AWS Security Checklist](https://d1.awsstatic.com/whitepapers/Security/AWS_Security_Checklist.pdf) 8. [AWS HIPAA Compliance Whitepaper](https://d0.awsstatic.com/whitepapers/compliance/AWS_HIPAA_Compliance_Whitepaper.pdf) 9. [AWS Cloud Adoption Framework](https://d1.awsstatic.com/whitepapers/aws_cloud_adoption_framework.pdf) 10. [AWS Auditing Security Checklist](https://d1.awsstatic.com/whitepapers/compliance/AWS_Auditing_Security_Checklist.pdf) 11. [AWS CIS Foundation benchmark](https://d1.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf) 12. [AWS Security Incident Response](https://d1.awsstatic.com/whitepapers/aws_security_incident_response.pdf) 13. [Overview of AWS Lambda Security](https://d1.awsstatic.com/whitepapers/Overview-AWS-Lambda-Security.pdf) 14. [AWS KMS Best Practices](https://d1.awsstatic.com/whitepapers/aws-kms-best-practices.pdf) 15. [Encrypting File Data with Amazon Elastic File System](https://d1.awsstatic.com/whitepapers/Security/amazon-efs-encrypted-filesystems.pdf) 16. [Security of AWS CloudHSM backups](https://d1.awsstatic.com/whitepapers/Security/security-of-aws-cloudhsm-backups.pdf) 17. [Security overview of AWS Lambda](https://aws.amazon.com/lambda/security-overview-of-aws-lambda/) 18. [NIST Cybersecurity Framework in the AWS cloud](https://d0.awsstatic.com/whitepapers/compliance/NIST_Cybersecurity_Framework_CSF.pdf) 19. [NIST 800-144 Security and Privacy in Public Cloud Computing](https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-144.pdf) 20. [Security at the Edge: Core Principles](https://d1.awsstatic.com/whitepapers/Security/security-at-the-edge.pdf) 21. [AWS KMS Best Practices](https://d0.awsstatic.com/whitepapers/aws-kms-best-practices.pdf) 22. [Security Overview of AWS Fargate](https://d1.awsstatic.com/whitepapers/AWS_Fargate_Security_Overview_Whitepaper.pdf) ## 书籍 1. [Hands-On AWS Penetration Testing with Kali Linux by PackT](https://www.packtpub.com/en-co/product/hands-on-aws-penetration-testing-with-kali-linux-9781789136722) 2. [Mastering AWS Security by PackT](https://www.packtpub.com/en-co/product/mastering-aws-security-9781805121718) 3. [Security Best Practices on AWS by PackT](https://www.packtpub.com/en-co/product/aws-security-best-practices-on-aws-9781789137637) 4. [Cloud Security Automation](https://www.packtpub.com/en-co/product/cloud-security-automation-9781788622196) 5. [AWS Automation Cookbook](https://www.packtpub.com/en-co/product/aws-automation-cookbook-9781788392112) 6. [AWS Lambda Security Best Practices - pdf](http://www.aliencoders.org/wp-content/uploads/2020/01/AWS-Lambda-Security-eBook-1.pdf) - 由 Puresec 发布，对我们应该遵循的 AWS Lambda 安全最佳实践进行了很好的概述。 7. [AWS Security by Manning](https://www.manning.com/books/aws-security) - 非常好的一本撰写中的书，即将发布。 8. [Securing DevOps](https://www.manning.com/books/securing-devops) - 一本包含云安全真实案例的书。任何云安全专业人士的必读书籍。 9. [Serverless Security](https://ServerlessSecurityBook.com) - 一本 Apress 出版的书，讨论 AWS、Azure 和 Google Cloud 上的无服务器安全。 10. [AWS Security Cookbook](https://www.packtpub.com/product/aws-security-cookbook/9781838826253) 11. [Practical Guide to Security in the AWS Cloud by SANS and sponsored by AWS Marketplace - pdf](https://pages.awscloud.com/rs/112-TZM-766/images/Cloud%20Security%20Practical%20Guide%20to%20Security%20in%20the%20AWS%20Cloud.pdf) 12. [CSA Guide to Cloud Computing by Sungress](https://www.oreilly.com/library/view/csa-guide-to/9780124201255/) 13. [Practical Cloud Security by O'reilly](https://www.oreilly.com/library/view/practical-cloud-security/9781492037507/) 14. [Effective IAM for AWS](https://www.effectiveiam.com) 15. [Amazon Bedrock in Action](https://www.manning.com/books/amazon-bedrock-in-action) ## 视频 1. [The fundamentals of AWS Security](https://www.youtube.com/watch?v=-ObImxw1PmI) - Youtube 2. [AWS Security by Design](https://www.youtube.com/watch?v=I1SwoKxB13c) - Youtube 3. [Account Security with IAM](https://www.youtube.com/watch?v=9CKsX6MOPDQ) - Youtube 4. [AWS re:Inforce 2019 Security Best Practices](https://www.youtube.com/watch?v=u6BCVkXkPnM) - Youtube 5. [AWS Cloud Security Playlist](https://www.youtube.com/watch?v=N4DdqAkeqD4&list=PLxzKY3wu0_FL4VDfuCohtikXTQNTvKQVX) - Youtube 6. [A cloud security architecture workshop by RSA](https://www.youtube.com/watch?v=4TxvqZFMaoA) - Youtube 7. [AWS Cloud Security](https://www.oreilly.com/library/view/aws-cloud-security/9780135174784/) - Oreilly 8. [Introduction to AWS Security Hub](https://www.youtube.com/watch?v=o0NDi01YPXs) - Youtube 9. [Solution for flaws.cloud AWS Security Challenge](https://www.youtube.com/watch?v=VDptLO9XYbU&list=PLRTsCutScZnzo3uV_79Dur73kqskfaTMS) - Youtube Playlist 10. [AWS Security Best Practice: Well-Architected way](https://www.youtube.com/watch?v=u6BCVkXkPnM) - Youtube 11. [Hands-On With AWS Security Best Practices](https://www.youtube.com/watch?v=dabbsZ_sDX0) 12. [AWS re:Invent 2020: Security at scale: How Goldman Sachs manages network and access control](https://www.youtube.com/watch?v=5cnob8HIswY) ## 在线教程/博客/演讲 1. [AWS Security official blog](https://aws.amazon.com/blogs/security/) 2. [AWS in Plain English](https://expeditedsecurity.com/aws-in-plain-english/) 3. [Why the CIA trusts AWS](https://mediatemple.net/blog/tips/aws-building-blocks/) 4. [Fundamentals of AWS Security](https://www.slideshare.net/AmazonWebServices/fundamentals-of-aws-security) - 来自 AWS 的演示 5. [AWS Security primer](https://cloudonaut.io/aws-security-primer/) - 很好的概述，快速浏览 AWS Security 资源。 6. [AWS Security Blog](https://aws.amazon.com/blogs/security/) 7. [How a whitehat hacker earned $1500 in 15 minutes due to AWS S3 misconfiguration](https://medium.com/@protector47/how-i-earned-1-500-in-just-15-mins-due-to-amazon-s3-bucket-misconfiguration-953b28242f95) - 读这篇博客很有趣。你也可以从这篇文章中学习。 8. [A deep dive into AWS S3 access control](https://labs.detectify.com/2017/07/13/a-deep-dive-into-aws-s3-access-controls-taking-full-control-over-your-assets/) - 它将让你很好地掌握 S3 buckets 是如何被利用的。篇幅较长，但值得一读。 9. [How Federico hacked a whole EC2 network during a penetration test](https://www.secsignal.org/en/news/how-i-hacked-a-whole-ec2-network-during-a-penetration-test/) 10. [A short blog on hacking AWS](https://www.devopsgroup.com/blog/hacking-aws-blog/) - 示例基于 cloudgoat。 11. [S3 security is flawed by design](https://www.upguard.com/blog/s3-security-is-flawed-by-design) - 这篇文章将告诉你为什么在使用 AWS S3 时需要格外小心。 12. [51 Tips for Security AWS(pdf)](https://www.mcafee.com/enterprise/en-us/assets/skyhigh/white-papers/wp-definitive-guide-to-aws-ebook.pdf) - McAfee 13. [The role of API gateways in API security](https://dzone.com/articles/the-role-of-api-gateways-in-api-security) 14. [Finding SSRF via HTML Injection inside a PDF file on AWS EC2](https://blog.appsecco.com/finding-ssrf-via-html-injection-inside-a-pdf-file-on-aws-ec2-214cc5ec5d90) 15. [Getting shell and data access in AWS by chaining vulnerabilities](https://blog.appsecco.com/getting-shell-and-data-access-in-aws-by-chaining-vulnerabilities-7630fa57c7ed) 16. [Hacking Serverless Runtimes - Blackhat2017](https://www.blackhat.com/docs/us-17/wednesday/us-17-Krug-Hacking-Severless-Runtimes.pdf) 17. [Detailed blog on ConsoleMe: A Central Control Plane for AWS Permissions and Access by Netflix](https://netflixtechblog.com/consoleme-a-central-control-plane-for-aws-permissions-and-access-fd09afdd60a8) 18. [Strengthen the security of sensitive data stored in Amazon S3 by using additional AWS services](https://aws.amazon.com/blogs/security/strengthen-the-security-of-sensitive-data-stored-in-amazon-s3-by-using-additional-aws-services/) 19. [Use IMDSv2 instead: Defense in depth](https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/ ) 20. [Managing permissions with grants in AWS Key Management Service](https://aws.amazon.com/blogs/security/managing-permissions-with-grants-in-aws-key-management-service/) 21. [AWS IAM Exploitation](https://sra.io/blog/aws-iam-exploitation/) 22. [S3 Pentest by Rhino Security Labs](https://rhinosecuritylabs.com/penetration-testing/penetration-testing-aws-storage/) 23. [How an Attacker Could Use Instance Metadata to Breach Your App in AWS](https://www.mcafee.com/blogs/enterprise/cloud-security/how-an-attacker-could-use-instance-metadata-to-breach-your-app-in-aws/) 24. [Orca Security Research Team Discovers AWS CloudFormation Vulnerability](https://orca.security/resources/blog/aws-cloudformation-vulnerability/) 25. [Orca Security Research Team Discovers AWS Glue Vulnerability](https://orca.security/resources/blog/aws-glue-vulnerability/) 26. [How I Discovered Thousands of Open Databases on AWS](https://infosecwriteups.com/how-i-discovered-thousands-of-open-databases-on-aws-764729aa7f32) 27. [CVE-2022-25165: Privilege Escalation to SYSTEM in AWS VPN Client](https://rhinosecuritylabs.com/aws/cve-2022-25165-aws-vpn-client/) 28. [Downloading and Exploring AWS EBS Snapshots](https://rhinosecuritylabs.com/aws/exploring-aws-ebs-snapshots/) 29. [Weaponizing AWS ECS Task Definitions to Steal Credentials From Running Containers](https://rhinosecuritylabs.com/aws/weaponizing-ecs-task-definitions-steal-credentials-running-containers/) 30. [Good Read on AWS IAM Privilege Escalation – Methods and Mitigation](https://rhinosecuritylabs.com/aws/aws-privilege-escalation-methods-mitigation/) 31. [One more on IAM Privilege Escalation](https://payatu.com/blog/mayank.arora/iam_privilege_escalation_attack) 32. *[A very good repo for learning IAM based vulnerabilities](https://github.com/BishopFox/iam-vulnerable) 33. [AWS Penetration Testing: Step by step guide](https://www.hackthebox.com/blog/aws-pentesting-guide) 34. [AWS Interview question on SSH](https://aws.plainenglish.io/i-have-asked-this-ssh-question-in-every-aws-interview-and-heres-the-catch-ee2013a83e99) ## 在线课程（付费/免费） 1. [AWS Fundamentals: Address Security Risks](https://www.coursera.org/learn/aws-fundamentals-addressing-security-risk) - Coursera 2. [Cloud Computing Security](https://www.coursera.org/learn/cloud-computing-security) - Coursera 3. [AWS: Getting started with Cloud Security](https://www.edx.org/course/aws-getting-started-with-cloud-security) - EdX 4. [AWS Certified Security Specialty](https://www.udemy.com/course/aws-certified-security-specialty/) - Udemy by Zeal Vora 5. [AWS Certified Security Specialty](https://acloud.guru/learn/aws-certified-security-specialty) - From Acloud.guru 6. [AWS Certified Security Specialty](https://www.udemy.com/course/ultimate-aws-certified-security-specialty/) - Udemy by Stephan Maarek 7. [AWS Certified Security Specialty](https://www.whizlabs.com/aws-certified-security-specialty/) - From WhizLabs 8. [AWS Advanced Security](https://www.udemy.com/course/aws-advanced-security/) - Udemy 9. [AWS Security Path](https://www.appsecengineer.com/product/aws-security) - AppSecEngineer 10. [AWS for Architects: Advanced Security](https://www.linkedin.com/learning/aws-for-architects-advanced-security/) - Linkedin Learn by Lynn Langit 11. [Practical Event Driven Security with AWS](https://acloud.guru/learn/practical-event-driven-security-with-aws) - Acloud.guru 12. [Learning Path for AWS Security](https://learn.acloud.guru/learning-path/aws-security) - Acloud.guru 精心设计的学习路径，适合想要成为 AWS Security 专家的人。 13. [Cloud Hacking course](https://www.notsosecure.com/hacking-training/cloud-hacking/) - From NotSoSercure 14. [Breaking and Pwning Apps and Servers in AWS and Azure](https://github.com/appsecco/breaking-and-pwning-apps-and-servers-aws-azure-training) - 此前是讲师指导的培训，现在作为免费开源课程ware发布，面向云渗透测试人员。 15. [AWS Skill Builder platform security learning plan](https://explore.skillbuilder.aws/learn/public/learning_plan/view/91/security-learning-plan) - AWS SkillBuilder 16. [Cloud Security: AWS Edition Bootcamp by Pentester Academy](https://bootcamps.pentesteracademy.com/course/cloud-security-aws-on-demand) - From Pentester Academy 17. [Cloud Security BootCamp by Kaizenteq](www.cloudsecuritybootcamp.com) - 来自 Kaizenteq 的每月免费云安全训练营 18. [EKS Goat: AWS EKS Security Masterclass by Anjali and Divyanshu](https://ekssecurity.kubernetesvillage.com/) - 来自 [Anjali](https://www.linkedin.com/in/peachycloudsecurity/) & [Divyanshu](https://www.linkedin.com/in/iamdivyanshu/) 的免费 EKS 攻击与防御课程 ## 实用工具 1. [AWS Security Products - Official](https://aws.amazon.com/products/security/) - 你应该考虑的几个重要工具： * 1.1 **AWS IAM:** AWS Identity and Access Management (IAM) 使您能够安全管理对 AWS 服务和资源的访问。 * 1.2 **CloudWatch:** CloudWatch 是 AWS 监控工具。 * 1.3 **CloudTrail:** AWS CloudTrail 是一项支持对您的 AWS 账户进行治理、合规性、操作审计和风险审计的服务。 * 1.4 **AWS Inspector:** AWS Inspector 是一项安全评估服务，用于 AWS 应用程序的漏洞和最佳实践扫描。 * 1.5 **Amazon GuardDuty:** GuardDuty 是一项托管威胁检测服务，部署简单，并随您的基础设施扩展。 * 1.6 **AWS KMS:** AWS KMS 是一项安全且具有弹性的服务，使用经 FIPS 140-2 验证的硬件安全模块。 * 1.7 **AWS Shield:** AWS Shield 是一项托管 DDoS 保护服务。AWS Shield 可以保护 EC2、Load balancers、CloudFront、Global Accelerator 和 Route 53 资源。 * 1.8 **AWS Trusted Advisor:** AWS Trusted Advisor 是一种在线工具，可为您提供实时指导，帮助您按照 AWS 最佳实践配置资源。 * 1.9 **AWS Config:** AWS Config 是一项服务，使您能够评估、审计和评估 AWS 资源的配置。 * 1.10 **Security Hub:** AWS Security Hub 为您提供 AWS 账户中高优先级安全警报和安全态势的全面视图。 * 1.11 **AWS WAF:** AWS WAF 是一种 Web Application Firewall，帮助保护您的 Web 应用程序或 API 免受可能影响可用性、损害安全性或消耗过多资源的常见 Web 攻击。 * 1.12 **AWS Macie:** Macie 主要用于保护数据。它是一项机器学习服务，监控数据访问趋势发现异常，以发现数据泄露和未授权的数据访问。 * 1.13 **AWS Detective:** Amazon Detective 自动从您的 AWS 资源收集日志数据，并使用机器学习、统计分析和图论构建一组关联数据，使您能够轻松进行更快、更高效的安全调查。 * 1.14 **AWS Conformance Packs:** Conformance Pack 是 AWS Config 规则和补救措施的集合，可以作为单个实体轻松部署到账户和区域或 AWS Organizations 中的组织。[GitHub 上的 Conformance Packs](https://github.com/awslabs/aws-config-rules/tree/master/aws-config-conformance-packs) 2. [Arsenal of AWS Security Tools](https://github.com/toniblyx/my-arsenal-of-aws-security-tools) - 所有安全类别工具和产品的集合 3. [AWS Security Automation](https://github.com/awslabs/aws-security-automation) - 用于 DevSecOps 和自动化事件响应安全的脚本和资源集合 4. [truffleHog](https://github.com/dxa4481/truffleHog) - 在 git 仓库中搜索高熵字符串和机密信息，深入挖掘提交历史 5. [gitleaks](https://github.com/zricethezav/gitleaks) - 审计 git 仓库中的机密信息 6. [AWS Security Benchmark](https://github.com/awslabs/aws-security-benchmark) - 与 AWS CIS Foundation 框架相关的开源演示、概念和指南。 7. [S3 Inspector](https://github.com/kromtech/s3-inspector) - 检查 AWS S3 bucket 权限的工具 8. [S3 Security Scanner](https://github.com/TocConsulting/s3-security-scanner) - 全面的 AWS S3 安全扫描器，分析 bucket 配置、策略和访问控制 9. [ScoutSuite](https://github.com/nccgroup/ScoutSuite) - 多云安全审计工具 10. [Prowler](https://github.com/toniblyx/prowler) - AWS Security 最佳实践评估、审计、加固和取证准备工具。 11. [AWS Vault](https://github.com/99designs/aws-vault) - 用于在开发环境中安全存储和访问 AWS 凭证的 Vault 12. [AWS PWN](https://github.com/dagrz/aws_pwn) - AWS 渗透测试工具大杂烩 13. [Pacu](https://github.com/RhinoSecurityLabs/pacu) - AWS 渗透测试工具包 14. [Zeus](https://github.com/DenizParlak/Zeus) - AWS 审计和加固工具 15. [Cloud Mapper](https://github.com/duo-labs/cloudmapper) - 分析您的 AWS 环境 (Python) 16. [ConsoleMe](https://github.com/Netflix/consoleme) - AWS 权限和访问的中央控制平面 17. [AWS Firewall Factory](https://github.com/globaldatanet/aws-firewall-factory) - 部署、更新和暂存您的 WAF，同时通过 FMS 集中管理它们。 18. [AWS Pentesting/Red Team Methodology - by hacktricks](https://cloud.hacktricks.xyz/pentesting-cloud/aws-pentesting) - AWS 环境渗透测试方法论的集合。 19. [AWS Pentesting/Red Team Methodology - by hackingthe.cloud](https://hackingthe.cloud/aws/general-knowledge/aws_organizations_defaults/) - 攻击性安全专业人员在云利用期间可以使用的攻击/战术/技术集合。 20. [CloudFox](https://github.com/BishopFox/cloudfox) - 自动化云渗透测试的态势感知 21. [aws-lint-iam-policies](https://github.com/welldone-cloud/aws-lint-iam-policies) - 用于查找基于身份和基于资源的 IAM 策略中问题的工具 22. [IAM Activity Tracker](https://github.com/TocConsulting/iam-activity-tracker) - Serverless AWS 解决方案，使用 EventBridge 和 CloudTrail 跟踪所有区域的 IAM、STS 和控制台登录活动 23. [s3dns](https://github.com/olizimmermann/s3dns) - 通过在侦察期间解析 CNAME 和 IP 来被动发现 S3（和其他云）bucket——非常适合隐蔽且早期地识别云存储泄露 24. [Nubicustos](https://github.com/Su1ph3r/Nubicustos) - 编排 20 多种安全工具（Prowler、ScoutSuite、Checkov、CloudFox、Pacu 等），提供统一的发现结果、攻击路径和合规性报告 25. [CloudSecure](https://github.com/carlosinfantes/cloudsecure) - 开源 AWS 安全评估平台，具备 AI 驱动分析、Prowler 集成和自动化 CIS 基准扫描。使用 CDK、Lambda 和 Step Functions 以 Serverless 方式构建 26. [cloud-audit](https://github.com/gebalamariusz/cloud-audit) - 开源 AWS 安全扫描器，可检测攻击链并生成修复代码。80 多项检查，支持 CIS/SOC 2 合规性。 27. [boto3-refresh-session](https://github.com/michaelthomasletts/boto3-refresh-session) - 一个简单的 Python 包，用于在 boto3 中自动刷新 AWS 临时凭证。支持 MFA、IoT 和自定义身份验证流程。 ## 安全实践与 CTF 1. [AWS Well Architected Security Labs](https://wellarchitectedlabs.com/security/) 2. [Flaws to learn common mistakes in AWS through challenge](http://flaws.cloud/) 3. [Flaws2 focuses on AWS security concepts through various challenge levels](http://flaws2.cloud/) 4. [CloudGoat By Rhino Security Labs](https://github.com/RhinoSecurityLabs/cloudgoat) - 易受攻击的 AWS 基础设施设计工具 5. [OWASP ServerlessGoat](https://github.com/OWASP/Serverless-Goat) - OWASP ServerlessGoat 是由 OWASP 维护的、故意设计为不安全的真实 AWS Lambda serverless 应用程序，用于教育目的。 6. [OWASP WrongSecrets](https://github.com/commjoen/wrongsecrets) - OWASP WrongSecrets 是一个易受攻击的应用程序，向您展示如何不存储机密信息。它涵盖了代码、Docker、Kubernetes 和 AWS 云不良实践。 7. [AWS S3 CTF Challenges with solutions](https://n0j.github.io/2017/10/02/aws-s3-ctf.html) 8. [AWS CTF with practical scenario](https://r00tz-ctf.awssecworkshops.com/) 9. [Breaking and Pwning Apps and Servers on AWS and Azure by AppSecCo](https://github.com/appsecco/breaking-and-pwning-apps-and-servers-aws-azure-training) - 该培训涵盖了从我们的漏洞评估、渗透测试和 OSINT 评估中提取的众多场景，引导学生经历发现、识别和利用安全弱点、错误配置和不良编程实践的旅程，这些可能导致云基础设施的彻底沦陷。 10. [AWS Workshop official](https://awsworkshop.io/) - 这不完全是安全部分，但通过这些研讨会示例理解 AWS 会很有帮助。 11. [AWS Security Workshops](https://awssecworkshops.com/) by AWS 12. [ThreatModel for Amazon S3](https://github.com/trustoncloud/threatmodel-for-aws-s3) - 针对 Amazon S3 的所有攻击场景库以及如何缓解它们，遵循基于风险的方法 13. [AWS Cloud Quest: Security Role](https://explore.skillbuilder.aws/learn/course/external/view/elearning/7636/cloud-quest) 14. [AWS Jam Journey: Security](https://explore.skillbuilder.aws/learn/course/external/view/elearning/9284/aws-jam-journey-security) 15. [TryHackMe: Attacking and Defending AWS](https://resources.tryhackme.com/attacking-and-defending-aws) 16. [Free AWS Security Labs](https://pentesting.cloud/) 17. [Black Sky Cloud Labs from HTB](https://www.hackthebox.com/business/professional-labs/cloud-labs-blacksky) 18. [CloudFoxable](https://cloudfoxable.bishopfox.com/) - 创建您自己的易受攻击的 AWS 渗透测试演练场 ## AWS 安全公告重要问题 1. [Container Networking Security Issue ([CVE-2020-8558])](https://nvd.nist.gov/vuln/detail/CVE-2020-8558)（此问题可能允许运行在同一主机或相邻主机（运行在同一 LAN 或第 2 层域中的主机）上的容器访问绑定到 localhost (127.0.0.1) 的 TCP 和 UDP 服务） 2. [Minimum Version of TLS 1.2 Required for FIPS Endpoints by March 31, 2021](https://aws.amazon.com/security/security-bulletins/AWS-2020-001/) 3. [Unencrypted md5 plaintext hash in metadata in AWS S3 Crypto SDK for golang](https://github.com/google/security-research/security/advisories/GHSA-76wf-9vgp-pj7w) 4. [CBC padding oracle issue in AWS S3 Crypto SDK for golang](https://github.com/google/security-research/security/advisories/GHSA-f5pg-7wfw-84q9) : [CVE-2020-8911](https://nvd.nist.gov/vuln/detail/CVE-2020-8911) 5. [In-band key negotiation issue in AWS S3 Crypto SDK for golang](https://github.com/google/security-research/security/advisories/GHSA-7f33-f4f5-xwgw) : [CVE-2020-8912](https://nvd.nist.gov/vuln/detail/CVE-2020-8912) 6. [CVE-2018-15869](https://nvd.nist.gov/vuln/detail/CVE-2018-15869): 一名 Amazon Web Services (AWS) 开发人员如果在使用 AWS CLI 描述镜像时未指定 --owners 标志，因此未按照 AWS 推荐的安全最佳实践正确验证源软件，可能会无意中从未经筛选的公共社区 AMI 目录加载不希望且可能恶意的 Amazon Machine Image (AMI)。 7. [How a Security Researcher found 1000s of open databases on AWS](https://infosecwriteups.com/how-i-discovered-thousands-of-open-databases-on-aws-764729aa7f32) ## AWS 安全漏洞事件 1. [AWS Security breaches - 2017](https://www.sumologic.com/blog/aws-security-breaches-2017/) 2. [200 million voters data leak](https://www.skyhighnetworks.com/cloud-security-blog/latest-voter-data-leak-is-a-lesson-in-aws-security/) - AWS 安全的一个教训 3. [Imperva blames data breach on Stolen AWS API keys](https://www.zdnet.com/article/imperva-blames-data-breach-on-stolen-aws-api-key/) 4. [Tesla's Amazon cloud account was hacked and used to mine cryptocurrency](https://www.businessinsider.in/finance/teslas-amazon-cloud-account-was-hacked-and-used-to-mine-cryptocurrency/articleshow/63003345.cms) 5. [10 worst Amazon S3 breaches](https://businessinsights.bitdefender.com/worst-amazon-breaches) 6. [Lion Air the Latest to Get Tripped Up by Misconfigured AWS S3](https://www.darkreading.com/attacks-breaches/lion-air-the-latest-to-get-tripped-up-by-misconfigured-aws-s3-/d/d-id/1335864) 7. [Online Fashion App 21 buttons Exposes Financial Records of Top European Influencers due to S3 misconfiguration](https://www.vpnmentor.com/blog/report-21-buttons-breach/) 8. [Capital One Cloud data breach due to S3 misconfiguration](https://rhinosecuritylabs.com/aws/capital-one-cloud_breach_s3-cloudgoat/) 9. [Online Fashion App 21 buttons Exposes Financial Records of Top European Influencers](https://www.vpnmentor.com/blog/report-21-buttons-breach/) 10. [Utah COVID-19 testing service exposes 50,000 patients’ photo IDs, personal info on the web](https://www.comparitech.com/blog/information-security/utah-covid-test-center-leak/) 11. [US municipalities suffer data breach due to misconfigured Amazon S3 buckets](https://www.securitymagazine.com/articles/95704-us-municipalities-suffer-data-breach-due-to-misconfigured-amazon-s3-buckets) ## AWS 基础设施级安全问题 1. Spectre and Meltdown (2018) - 影响：影响了几乎所有现代 CPU（Intel、AMD 和 ARM），允许跨进程未授权访问敏感数据，包括破坏云环境中虚拟机之间的隔离。 - 漏洞类型：利用推测执行的侧信道攻击。 - AWS 缓解措施：AWS 部署了软件补丁（KPTI、Retpoline 等）和硬件微码更新，同时确保性能下降最小化。 2. Zenbleed (2023) - 影响：影响了 AMD Zen 2 处理器，高速从 CPU 寄存器泄露加密密钥和密码等敏感数据。 - 漏洞类型：寄存器文件泄露（由推测执行失败引起）。 - AWS 缓解措施：AWS 通过微码更新和软件缓解措施修补了受影响的 EC2 实例。 ## AWS Security 播客/新闻通讯 1. [Cloud Security Podcast - YouTube](https://www.youtube.com/@CloudSecurityPodcast/videos) - 每周采访云安全专业人士，讨论 AWS、Azure、GCP 安全，面向蓝队和红队 2. [Cloud Security Newsletter](https://www.cloudsecuritynewsletter.com/) - 每周将云安全精华发送到您的收件箱 ## 贡献者 [有关详细信息，请参阅 contribute.md 中的指南](Contribute.md)。 感谢以下对本项目做出贡献的人。 **让您的名字列在这里** [贡献者列表](https://github.com/jassics/awesome-aws-security/graphs/contributors)

标签：AWS安全, 亚马逊云服务, 安全学习, 安全攻防, 教程, 漏洞利用检测, 漏洞探索, 电子书, 白皮书, 网络安全, 视频教程, 逆向工具, 隐私保护, 黑客技术