https://github.com/toshke/aws-waf-demo-workshop

Workshop for demonstrating AWS WAF usage
https://github.com/toshke/aws-waf-demo-workshop

api apigateway aws aws-waf cloud loadtesting security serverless workshop

Last synced: 6 months ago
JSON representation

Workshop for demonstrating AWS WAF usage

• Host: GitHub
• URL: https://github.com/toshke/aws-waf-demo-workshop
• Owner: toshke
• Created: 2019-10-25T10:09:38.000Z (almost 6 years ago)
• Default Branch: master
• Last Pushed: 2019-12-10T12:05:02.000Z (almost 6 years ago)
• Last Synced: 2025-03-22T21:22:34.956Z (7 months ago)
• Topics: api, apigateway, aws, aws-waf, cloud, loadtesting, security, serverless, workshop
• Language: Python
• Homepage: https://www.meetup.com/Melbourne-AWS-Programming-and-Tools-Meetup/
• Size: 37.1 KB
• Stars: 7
• Watchers: 3
• Forks: 3
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# AWS WAF Workshop

This workshop provides hands on experience with

- Deploying Serverless API Endpoint using api gateway

- Load testing HTTPS API Endpoint using goad utility and coker

- Deploying WebApplicationFirewall (WAF) to protect the serverless api endpoint

- Demonstrate the WAF request blocking functionality based

on header

## Prereqs

This workshop makes assumptions on students running it using [Cloud9](https://aws.amazon.com/cloud9/) in `us-east-2` region. You may be able to run from Mac

or Windows as well, and in other regions, though workshop steps are not optimised for such environment.

Also, all of the step instructions are relying

on the fact that you are positioned within that steps

folder.

Cloud9 instance should have IAM Role with following permissions attached to it

 - Manage CloudForamtion resources

 - Manage AWS Lambda functions

 - Manage API Gateway

 - Manage CloudWatch resources

 - Manage WAF Regional resources

For the simplicity of the workshop conduction, it is

recommended to have admin priveleges credentials

You can find [instructions here on how to setup Cloud9](cloud9.md)

### Workshop content

## Step 1

[Deploy Simple WebAPI with ApiGateway and Lambdas](step1/README.md)

## Step 2

[Install goad. Load test the API. Look at the traffic data.](step2/README.md)

## Step 3

[Deploy the WAF that will detect Load testing header and block traffic.](step3/README.md)

## Step 4

[Run the load testing tool with and without the header. Look at metrics for Web Application Firewall](step4/README.md)

## Too easy?

If you have come this far and felt that was too easy, you can [try out some more complex tasks](advanced.md)

## Cleanup

[Remove All of the created resources](cleanup.md)

Read more about WAF on [Official AWS Documentation pages](https://docs.aws.amazon.com/waf/latest/APIReference/Welcome.html)

Thanks for taking your time to go through this workshop.