Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/globaldatanet/aws-firewall-factory
Easily improve the security of your web applications with aws firewall factory. Protect your valuable assets with seamless WAF deployment, updates, and staging, all efficiently managed centrally with Firewall Manager.
https://github.com/globaldatanet/aws-firewall-factory
amazon-web-services aws cdk devsecops firewall governance hacktoberfest owasp owasp-top-10 security typescript waf wafv2
Last synced: about 1 month ago
JSON representation
Easily improve the security of your web applications with aws firewall factory. Protect your valuable assets with seamless WAF deployment, updates, and staging, all efficiently managed centrally with Firewall Manager.
- Host: GitHub
- URL: https://github.com/globaldatanet/aws-firewall-factory
- Owner: globaldatanet
- License: apache-2.0
- Created: 2021-11-05T14:20:54.000Z (about 3 years ago)
- Default Branch: master
- Last Pushed: 2024-05-06T10:17:13.000Z (7 months ago)
- Last Synced: 2024-05-10T18:57:43.449Z (7 months ago)
- Topics: amazon-web-services, aws, cdk, devsecops, firewall, governance, hacktoberfest, owasp, owasp-top-10, security, typescript, waf, wafv2
- Language: TypeScript
- Homepage: https://docs.aws-firewall-factory.com/
- Size: 27 MB
- Stars: 221
- Watchers: 5
- Forks: 21
- Open Issues: 13
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
- Code of conduct: Code_of_Conduct.md
- Security: SECURITY.md
Awesome Lists containing this project
- DevSecOps - Globaldatanet FMS automation - firewall-factory?style=for-the-badge)| (AWS)
- awesome-cloud-security - AWS Firewall Factory
- awesome-cdk - aws-firewall-factory - Deploy, update, and stage your WAFs while managing them centrally via FMS. (Construct Libraries / Security)
- awesome-aws-security - AWS Firewall Factory - Deploy, update, and stage your WAFs while managing them centrally via FMS. (Tools of Trade)
- awesome-cloud-security - aws-firewall-factory
- awesome-cdk - aws-firewall-factory - Deploy, update, and stage your WAFs while managing them centrally via FMS. (Construct Libraries / Security)
README
[![Mentioned in Awesome CDK](https://awesome.re/mentioned-badge.svg)](https://github.com/kolomied/awesome-cdk)
[![License: Apache2](https://img.shields.io/badge/license-Apache%202-lightgrey.svg)](http://www.apache.org/licenses/) [![cdk](https://img.shields.io/badge/aws_cdk-v2-orange.svg)](https://docs.aws.amazon.com/cdk/v2/guide/home.html)
[![latest](https://img.shields.io/badge/latest-release-yellow.svg)](https://github.com/globaldatanet/aws-firewall-factory/releases)
[![gdn](https://img.shields.io/badge/opensource-@globaldatanet-%2300ecbd)](https://globaldatanet.com/opensource) [![dakn](https://img.shields.io/badge/by-dakn-%23ae0009.svg)](https://github.com/daknhh)
[![TypeScript](https://badges.frapsoft.com/typescript/love/typescript.png?v=101)](https://github.com/ellerbrock/typescript-badges/)
[![Tweet](https://img.shields.io/twitter/url/http/shields.io.svg?style=social)](https://twitter.com/intent/tweet?text=AWS%20FIREWALL%20FACTORY%20-%20Deploy%2C%20update%2C%20and%20stage%20your%20WAFs%20while%20managing%20them%20centrally%20via%20FMS&url=https://github.com/globaldatanet/aws-firewall-factory&hashtags=aws,security,waf)
[![roadmap](https://img.shields.io/badge/public-roadmap-yellow.svg)](https://github.com/orgs/globaldatanet/projects/1)**[π§ Feature request](https://github.com/globaldatanet/aws-firewall-factory/issues/new?assignees=&labels=feature-request%2C+enhancement&template=feature_request.md&title=)** | **[π Bug Report](https://github.com/globaldatanet/aws-firewall-factory/issues/new?assignees=&labels=bug%2C+triage&template=bug_report.md&title=)**
## π° Table of contents
- [π° Table of contents](#π°-table-of-contents)
- [π Overview](#-overview)
- [π¬ Media](#-media)
- [π Useful Links](#-useful-links)
- [πΊοΈ Architecture](#οΈ-architecture)
- [π§ͺ Tests](#-tests)
- [π¦ΈπΌββοΈ Contributors](#οΈ-contributors)
- [π©βπ» Contribute](#-contribute)
- [π Supporters](#-supporters)| Releases | Author |
|---------------------------------------------------|--------|
| [Changelog](CHANGELOG.md) - [Features](Features.md) - [π‘οΈ Deployment](Deployment.md) | David Krohn [Linkedin](https://www.linkedin.com/in/daknhh/) - [Blog](https://globaldatanet.com/our-team/david-krohn)|## π Overview
AWS Web Application Firewalls (WAFs) protect web applications and APIs from typical attacks from the Internet that can compromise security and availability, and put undue strain on servers and resources. The AWS WAF provides prebuilt security rules that help control bot traffic and block attack patterns. You can also create your own rules based on your own requirements. In simple scenarios and for smaller applications, this is very easy to implement on an individual basis. However, in larger environments with tens or even hundreds of applications, it is advisable to aim for central governance and automation. This simple solution helps you deploy, update and stage your Web Application Firewalls while managing them centrally via AWS Firewall Manager.
![Example Deployment](./static/example-deployment.gif "Example Deployment")
## π¬ Media
If you want to learn more about the AWS Firewall Factory feel free to look at the following media resources.
- [πΊ Webinar: Web Application Firewalls at Scale - Language: π©πͺ](https://globaldatanet.com/webinars/aws-security-with-security-in-the-cloud)
- [πΊ Webinar: Managing AWS Web Application Firewalls at Scale - Language: πΊπΈ](https://globaldatanet.com/webinars/managing-aws-web-application-firewalls-at-scale)
- [πΊ Webinar: Secure Serverless Applications against OWASP TOP 10 in 5 mins - Language: πΊπΈ](https://serverless-summit.io/)
- [π Slides: Managing AWS Web Application Firewalls at Scale - Language: πΊπΈ](https://docs.google.com/presentation/d/1jE_DmNk0cCc1XM8eBYPM2za0pzGyg9Lv/edit?usp=sharing&ouid=115444461121738087344&rtpof=true&sd=true)
- Secure Serverless Applications against OWASP TOP 10 in 5 Minutes - Language: πΊπΈ
- [π Slides](https://docs.google.com/file/d/1YJCfTt8ILa2R9n23fHDFLpfLhTwhB4ea/edit?filetype=mspresentation) - [πΊ Video](https://www.youtube.com/watch?v=jrYpr0DLKfo)#### π Useful Links
- [π¦π€ Twitter Bot to get Notified for Managed Rules Updates](https://twitter.com/AWSMgMtRulesBot)
- [π« AWS WAF Workshop](https://catalog.us-east-1.prod.workshops.aws/workshops/c2f03000-cf61-42a6-8e62-9eaf04907417/en-US/02-custom-rules)
## πΊοΈ Architecture![Architecture](./static/AWSFIREWALLMANAGER.png "Architecture")
## π§ͺ Tests
| Test | Status |
|---|---|
| CodeQL | ![CodeQL](https://github.com/globaldatanet/aws-firewall-factory/actions/workflows/github-code-scanning/codeql/badge.svg?branch=master) |
| Linting | ![linting](https://github.com/globaldatanet/aws-firewall-factory/actions/workflows/linting.yml/badge.svg?branch=master) |
| WAF Deployment - Only Managed Rule Groups | ![onlyManagedRuleGroups](https://github.com/globaldatanet/aws-firewall-factory/actions/workflows/waf_test_onlymanagedrulegroups.yml/badge.svg?branch=master) |
| WAF Deployment - Only Managed Rule Groups with Excludes | ![rateBasedwithScopeDown](https://github.com/globaldatanet/aws-firewall-factory/actions/workflows/waf_test_onlymanagedrulegroupsWithExcludes.yml/badge.svg?branch=master) |
| WAF Deployment - IpSets | ![IpSets](https://github.com/globaldatanet/aws-firewall-factory/actions/workflows/waf_test_ipSets.yml/badge.svg?branch=master) |
| WAF Deployment - RegexPatternSets | ![regexPatternSets](https://github.com/globaldatanet/aws-firewall-factory/actions/workflows/waf_test_regexPatternSets.yml/badge.svg?branch=master) |
| WAF Deployment - RateBasedwithScopeDown | ![rateBasedwithScopeDown](https://github.com/globaldatanet/aws-firewall-factory/actions/workflows/waf_test_rateBasedwithScopeDown.yml/badge.svg?branch=master) |## π¦ΈπΌββοΈ Contributors
Any form of contribution is welcome. The above contributors have been officially released by globaldatanet.
### π©βπ» Contribute
Want to contribute to **AWS FIREWALL FACTORY**? Check out the [Contribution docs](./CONTRIBUTING.md)
### π Supporters
[![Stargazers repo roster for @globaldatanet/aws-firewall-factory](http://bytecrank.com/nastyox/reporoster/php/stargazersSVG.php?user=globaldatanet&repo=aws-firewall-factory)](https://github.com/globaldatanet/aws-firewall-factory/stargazers)
[^1]: Optional Fields.