Code examples for the AWS Security Blog post: How to use CI/CD to deploy and configure AWS security services with Terraform

Configures an AWS Web Application Firewall.

Deep Security's APIs make it simple to integration with a variety of AWS Services

Enhance Amazon CloudFront Origin Security with AWS WAF and AWS Secrets Manager

Mitigations (AWS WAF, Lambda@Edge/CloudFront Functions) to implement on AWS to attempt to prevent log4j exploitation.

This project creates two regional WAF IP sets and automatically updates them with AWS service's IP ranges from the ip-ranges.json file. The ranges are configurable as well as the regions for EC2 ranges. Use cases include allowing CloudFront requests, Route53 health checker and EC2 IP range (which includes AWS Lambda and CloudWatch Synthetics).

A workshop about AWS WAF Classic and the WAF Security Automations Solution

Log all AWS WAF Matched Rules to S3 and/or Loggly using Serverless

🌳 A sustainable Terraform Package which creates resources for Firewall Services on AWS

Complete provisioning and automation management for AWS WAF V1 Rules - Regional Mode

Workshop for demonstrating AWS WAF usage

An Auction API built with serverless framework and cdk

Convert CIDR ranges into the ranges allowed by AWS WAF IP Sets

Serverless website monitoring tool with serverless franework

Terraform module to manage AWS WAF global (CloudFront) rules

AWS App Runner with WAF Web ACLs