- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Day 02 AWS GuardDuty Automation | Automatically Quarantine Compromised EC2 Instances #devops
In this video, I demonstrate a real-world AWS security automation where a compromised EC2 instance is automatically quarantined the moment Amazon GuardDuty detects suspicious activity.
This project is designed the same way it’s done in production environments — minimal permissions, event-driven architecture, and zero manual intervention.
Phase 1 – Environment & Security Setup
Enable Amazon GuardDuty
Create a VPC and required networking
Create a Quarantine Security Group (no inbound / outbound rules)
Create a minimal IAM role using AmazonSSMManagedInstanceCore
Launch an EC2 instance and attach the role
(⚠️ Quarantine SG is NOT attached initially)
🔹 Phase 2 – Automation & Detection
Create an IAM role for Lambda with required permissions
Build the Lambda function to attach the Quarantine SG
Configure Amazon EventBridge for GuardDuty findings
Add triggers to invoke Lambda automatically
Generate a GuardDuty finding to test the flow
🚨 What Happens Automatically?
GuardDuty detects malicious activity
EventBridge triggers Lambda
Lambda replaces the EC2 Security Group
Instance is fully isolated (quarantined) from the network
Why this project matters
Real AWS incident response automation
Used in SOC, Cloud Security & DevOps teams
Interview-ready production security project
Covers GuardDuty, Lambda, EventBridge, IAM, EC2
Perfect for DevOps & Cloud Security portfolios
If you’re serious about AWS Security, DevOps automation, or real-time incident response, this project is a must-have.
👉 Like, share & subscribe for more real AWS projects.
GitHub : https://github.com/saikiranpi/mastering-lambda
Docker : https://hub.docker.com/u/kiran2361993
LinkedIn : / saikiranpinapathruni
Medium : / pinapathrunisaikiran
Buy Me a Coffee : https://buymeacoffee.com/saikiranpi
Book 1:1 call : https://topmate.io/pinapathruni_saikiran
#aws #guardduty #devops #cloudsecurity #awssecurity #lambda #EventBridge #ec2 #incidentresponse #devsecops
Видео Day 02 AWS GuardDuty Automation | Automatically Quarantine Compromised EC2 Instances #devops канала Saikiran Pinapathruni
This project is designed the same way it’s done in production environments — minimal permissions, event-driven architecture, and zero manual intervention.
Phase 1 – Environment & Security Setup
Enable Amazon GuardDuty
Create a VPC and required networking
Create a Quarantine Security Group (no inbound / outbound rules)
Create a minimal IAM role using AmazonSSMManagedInstanceCore
Launch an EC2 instance and attach the role
(⚠️ Quarantine SG is NOT attached initially)
🔹 Phase 2 – Automation & Detection
Create an IAM role for Lambda with required permissions
Build the Lambda function to attach the Quarantine SG
Configure Amazon EventBridge for GuardDuty findings
Add triggers to invoke Lambda automatically
Generate a GuardDuty finding to test the flow
🚨 What Happens Automatically?
GuardDuty detects malicious activity
EventBridge triggers Lambda
Lambda replaces the EC2 Security Group
Instance is fully isolated (quarantined) from the network
Why this project matters
Real AWS incident response automation
Used in SOC, Cloud Security & DevOps teams
Interview-ready production security project
Covers GuardDuty, Lambda, EventBridge, IAM, EC2
Perfect for DevOps & Cloud Security portfolios
If you’re serious about AWS Security, DevOps automation, or real-time incident response, this project is a must-have.
👉 Like, share & subscribe for more real AWS projects.
GitHub : https://github.com/saikiranpi/mastering-lambda
Docker : https://hub.docker.com/u/kiran2361993
LinkedIn : / saikiranpinapathruni
Medium : / pinapathrunisaikiran
Buy Me a Coffee : https://buymeacoffee.com/saikiranpi
Book 1:1 call : https://topmate.io/pinapathruni_saikiran
#aws #guardduty #devops #cloudsecurity #awssecurity #lambda #EventBridge #ec2 #incidentresponse #devsecops
Видео Day 02 AWS GuardDuty Automation | Automatically Quarantine Compromised EC2 Instances #devops канала Saikiran Pinapathruni
aws guardduty aws security automation ec2 quarantine aws incident response guardduty lambda automation aws devops project cloud security automation aws eventbridge guardduty aws soc automation aws ec2 security real time aws security aws lambda security aws cloud security project devops security project aws security best practices aws guardduty tutorial aws automation project aws for devops engineers cloud incident response aws production security
Комментарии отсутствуют
Информация о видео
10 января 2026 г. 19:30:39
00:43:14
Другие видео канала
Day 10 Automate Your AWS-AMI with HashiCorp Packer | @SaiKirannPinapathruni
What is routing mesh in swarm? #docker #kubernetes #aws #interviewquestions
Master Kubernetes Interviews Key Tips & Tricks #tech #kubernetes #technology #kubernetespods
#motivation #kubernetespods #cybersecurity #education #kubernetes #azuredevops #tech #automobile
Day 23 Amazon Redshift | Data Warehousing | S3 | QuickSight | @SaiKirannPinapathruni
#kubernetespods #saikiranpinapathruni #coding #programming #devopssoftware #kubernetes
Terraform Advantages #terraform #devsecops
Master Docker From Beginner to Pro! #kubernetes #docker #jenkins
#kubernetes #cloudcomputing #tech #automobile #awsdevops #saikiranpinapathruni #devops #aws
Understanding the Certificate Chain in Kubernetes TLS Security
Networking Policies #kubernetes #facts #devops #aws #saikiranpinapathruni
Day 25 S3 Policies | Access Points | S3Fs | #saikiranpinapathruni
#aws #devops #devopsinterviewquestions #devopsproject #job #aws #awscloudcomputing
Master Kubernetes Manage Resources Like a Pro! #kubernetes #tech #technology #cloudcomputing
Understanding Fargate Resource Allocation and Scaling
Master Kubernetes in 10 Hour #kubernetes #tech #saikiranpinapathruni #cloudcomputing
#programming #kubernetestrainer #cloudcomputing #facts #kubernetes #coding #devops #awsdevops #aws
Day 07 NAT Simplifying AWS NAT-GW for Seamless Connectivity | @SaiKirannPinapathruni
#tech #cloudcomputing #technology #devops #facts #business #microsoftazure #devops #devops #tech
What strategies you implement in Deployment? #kubernetes #devops #aws #saikiranpinapathruni
Day 15 Route 53 | Latency | Weighted | Geo Location | Failover | @SaiKirannPinapathruni
#terraform #devops #awsdevops #aws #coding #azure #business
Monitoring and Logging.
#tech #cloudcomputing #technology #devops #facts #kubernetespods #awsdevops #cybersecurity
Day 27 | Setting Up AWS FSX and Workspaces with Active Directory Integration | #saikiranpinapathruni
