Tag Archives: aws

Building an Ansible Lab in AWS

Are you ready to learn Ansible? Why not use a free-tier AWS account in order to spin up an Ansible lab. Using this approach, you can build your Linux Ansible control node – and then spin up a variety of host devices that you plan to control.

Here are my videos for you so far on this subject. You will note that these are in a playlist on my YouTube channel entitled – Ansible. Enjoy!

Ep 1 – IT Certification Weekly 4/17/2020

I hope you enjoy the first installment of a weekly YouTube show I am creating for the IT Certification community.

Thanks in advance for watching and posting your questions or comments!

In this episode, I cover the following:

  • The growing list of certification vendors permitting home/office testing options
  • Step by step guidance on how to be ready for the at home testing
  • The ever-growing list of Specialty Certifications from AWS

Penetration Testing and AWS

Here is one of those topics where you can often run into misinformation when you are studying AWS. That is because the rules keep changing, and you will often have textbooks and courses quoting old rules still!

AWS Pen Test

So here is the skinny as of 10/20/2019! You no longer have to obtain permission from AWS for pen testing your own resources within 8 of the total services of AWS. NOTE: Be sure not to pen test against any AWS services themselves, as this is never permitted. In fact, if you should discover vulnerabilities in a service itself when you are pen testing your resources, you are encouraged to report that to the AWS Security team. What are the 8 services? Here they are:

  • EC2, including NAT Gateways and Elastic Load Balancers
  • RDS
  • CloudFront
  • Aurora
  • API Gateways
  • Lambda and Lambda Edge
  • Lightsail
  • Elastic Beanstalk

You should also note that Amazon currently prohibits the following tests:

  • DNS zone walking via Amazon Route 53 Hosted Zones
  • Denial of Service (DoS), Distributed Denial of Service (DDoS), Simulated DoS, Simulated DDoS
  • Port flooding
  • Protocol flooding
  • Request flooding (login request flooding, API request flooding)

These rules will change again in the future. Be sure to subscribe to the blog using the widget in the right column. When the rules change – I will be sure to let you know!

Thanks for reading, and have fun in AWS! Just not too much fun!