AWS Security Workshops

可以实际上手体验的模拟环境，帮助更快学习使用AWS服务。

Workshop

Workshop Name	Description
ZeroTrust workshop	This workshop focuses on applying Zero Trust principles to the service-to-service architectures we see in many micro-architecture or distributed environments today. This is not the only type of architecture that can benefit from these principles however, as scenarios like end-user access and Industrial IoT can benefit as well. Keep an eye out for any sequels that may delve into these use cases as we continue the Zero Trust saga.
AWS Workshops	This website lists workshops created by the teams at Amazon Web Services (AWS). Workshops are hands-on events designed to teach or introduce practical skills, techniques, or concepts which you can use to solve business problems. You can filter by topic using the toolbar above.
AWS Security Workshops	这是一个AWS security workshops的统一入口，在这里，您将找到一系列研讨会和其他实践内容，旨在帮助您了解 AWS 服务生态系统，并向您介绍可用于保护在 AWS 中运行的环境和工作负载的各种最佳实践。
AWS Well-Architected Labs	适合：刚上AWS云，刚迁移到AWS的客户学习。 实验包含了文档和代码，帮助你学习和搭建使用架构最佳实践。实验按照能力做了分类，100是入门介绍，200/300是中级，400是高级。
AWS Well-Architecture MindMap	脑图的方式看良好架构设计的各个主题以及主题下面的小节。点击后可以查看详细的信息。
Security for Developers	In this workshop you’ll learn how to think about security for the things you are responsible for - the applications that you build. We’ll go through the common security risks and the tools & techniques that you can use to secure your applications without making major impact to your Software Delivery.
Adding Security into DevOps	How can Security organizations enable developers build security into their products and services? In this workshop, you will experience how tooling and automation can create a security conscious culture throughout the development lifecycle while scaling to the demands of the business. We will see an example of how to stop code that erroneously contains stray AWS credentials (we revoked them first, of course) from being deployed.
Identity Federation Workshops	适合使用IAM有一定经验，想要实现单点登录的用户。 The techniques demonstrated in these workshops relate to traditional SAML federation for AWS. These techniques are still valid and useful. However, AWS Single Sign-On (AWS SSO) provides analogous capabilities by way of a managed service. If you are just getting started with federating access to your AWS accounts, we recommend that you evaluate AWS SSO for this purpose.
Deep dive on AWS IAM Roles Anywhere	This workshop will help understand how you can configure AWS IAM Roles Anywhere with Amazon Certificate Manager Private Certificate Authority and how to distribute AWS IAM temporary credentials to external system and workloads.
Serverless Security Workshop	In this workshop, you will learn techniques to secure a serverless application built with AWS Lambda, Amazon API Gateway and RDS Aurora.
Protecting workloads on AWS from the Instance to the Edge	In this workshop, you will build an environment consisting of two Amazon Linux web servers behind an application load balancer. The web servers will be running a PHP web site that contains several vulnerabilities. You will then use AWS Web Application Firewall (WAF), Amazon Inspector and AWS Systems Manager to identify the vulnerabilities and remediate them.
Amazon Verified Permissions workshop	In this workshop, we will deep dive into Amazon Verified Permissions and build out an authorization solution for a mythical Sweets Manager application.