This repository contains hands-on AWS security projects designed to help you learn and implement cloud security best practices. Each project is beginner-friendly with step-by-step instructions, real-world scenarios, and security checklists.
Whether you're preparing for AWS certifications, building your security portfolio, or just want to learn cloud security - these projects are for you!
Learn to secure AWS EC2 instances from launch to production
Skills Covered:
|
Master the Principle of Least Privilege with custom IAM policies
Skills Covered:
|
┌─────────────────────────────────────────────────────────────────────┐
│ AWS Security Learning Path │
├─────────────────────────────────────────────────────────────────────┤
│ │
│ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐ │
│ │ Project 1 │ ──▶ │ Project 2 │ ──▶ │ Coming │ │
│ │ EC2 Sec │ │ IAM Policy │ │ Soon! │ │
│ └─────────────┘ └─────────────┘ └─────────────┘ │
│ │ │ │ │
│ ▼ ▼ ▼ │
│ ┌───────────┐ ┌───────────┐ ┌───────────┐ │
│ │ Security │ │ Least │ │ VPC & │ │
│ │ Groups │ │ Privilege │ │ Network │ │
│ │ SSH Keys │ │ Policies │ │ Security │ │
│ │ Hardening │ │ S3 │ │ WAF │ │
│ └───────────┘ └───────────┘ └───────────┘ │
│ │
└─────────────────────────────────────────────────────────────────────┘
Before you begin, ensure you have:
| Requirement | Description | Link |
|---|---|---|
| ☁️ AWS Account | Free tier eligible | Create Account |
| 💻 AWS CLI | Command-line tool | Installation Guide |
| 🔑 SSH Client | For EC2 access | Built-in (Mac/Linux) or PuTTY |
# Clone this repository
git clone https://github.com/Ak-cybe/AWS-Security-Projects.git
# Navigate to the project
cd AWS-Security-Projects
# Start with Project 1
# Open Project-1-EC2-Security.md and follow along!| Category | Skills |
|---|---|
| Identity & Access | IAM Users, Policies, Roles, Least Privilege |
| Compute Security | EC2 Hardening, SSH Security, Security Groups |
| Network Security | VPC, Security Groups, NACLs, Firewall Rules |
| Monitoring | CloudWatch, CloudTrail, Alerting |
| Best Practices | CIS Benchmarks, AWS Well-Architected |
┌──────────────────────────────────┐
│ AWS Security Concepts │
└──────────────────────────────────┘
│
┌───────────────────────┼───────────────────────┐
│ │ │
▼ ▼ ▼
┌───────────────┐ ┌───────────────┐ ┌───────────────┐
│ Identity │ │ Network │ │ Monitoring │
│ & Access │ │ Security │ │ & Logging │
├───────────────┤ ├───────────────┤ ├───────────────┤
│ • IAM Users │ │ • Sec Groups │ │ • CloudWatch │
│ • Policies │ │ • SSH Config │ │ • CloudTrail │
│ • Roles │ │ • Firewalls │ │ • Alerts │
│ • MFA │ │ • VPC │ │ • Dashboards │
└───────────────┘ └───────────────┘ └───────────────┘
| Project | Description | Status |
|---|---|---|
| 🌐 VPC Security | Network isolation, NACLs, Flow Logs | 🔄 In Progress |
| 🔐 Secrets Manager | Secure credential management | 📋 Planned |
| 🚨 GuardDuty Setup | Threat detection & response | 📋 Planned |
| 📝 CloudTrail Logging | Audit and compliance | 📋 Planned |
| 🏗️ Well-Architected Review | Security pillar assessment | 📋 Planned |
AWS-Security-Projects/
│
├── 📄 README.md # You are here!
├── 📄 LICENSE.md # MIT License
│
├── 📂 assets/ # Images & diagrams
│ ├── 🖼️ aws-security-banner.png
│ ├── 🖼️ ec2-security-architecture.png
│ ├── 🖼️ iam-policy-architecture.png
│ └── 🖼️ aws-cli-demo.png
│
├── 📄 Project-1-EC2-Security.md # EC2 Security Lab
└── 📄 Project-2-IAM-User-Custom-Policy.md # IAM Least Privilege Lab
Contributions are welcome! If you'd like to add a project or improve existing ones:
- Fork the repository
- Create a feature branch (
git checkout -b feature/new-project) - Commit your changes (
git commit -m 'Add VPC Security Project') - Push to the branch (
git push origin feature/new-project) - Open a Pull Request
This project is licensed under the MIT License - see the LICENSE file for details.
Amresh Kumar
Cloud Security Enthusiast | AWS Practitioner | Cybersecurity Learner
If these projects helped you learn AWS security, please consider:
⭐ Star this repository ⭐
Share with others who want to learn cloud security!
