Web Application Firewall (WAF) and AWS Shield

Learn how to protect your web application from common web exploits using an AWS Web Application Firewall and AWS Shield.

We'll cover the following

AWS WAF
- How AWS WAF works
- What resources are protected using WAF
AWS Shield
- AWS Shield Advanced
  - When to use AWS Shield Advanced

Web applications are constantly targeted by cyberattacks, including SQL injection, cross-site scripting, and Distributed Denial of Service (DDoS) attacks, which can compromise data security and disrupt services. To protect against such cyberattacks, it is essential to implement robust security measures that can detect, mitigate, and respond to malicious traffic while maintaining application performance and compliance. AWS provides specialized services like AWS WAF and AWS Shield to address these security challenges effectively.

AWS WAF

AWS WAF is a web application firewall that helps protect our web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF configures rules that allow, block, or monitor (count) web requests based on our predefined conditions. These conditions include IP addresses, HTTP headers, HTTP body, URI strings, SQL injection, and cross-site scripting. New rules can be deployed within minutes, letting us respond quickly to changing traffic patterns.

Get hands-on with 1400+ tech skills courses.

Introduction

AWS Fundamentals

Identity and Access Management

Securing AWS Resources: Managing Access with IAM

Networking

Understanding Networking Services in AWS—From Zero to Hero

Getting Started with Virtual Private Cloud (VPC) in AWS

Managing Peer Connections between Amazon Virtual Private Clouds

Simple Storage Service S3

Configuring a Static Website with S3 and CloudFront

Compute Services

Getting Started with AWS Batch

Getting Started with Amazon ECS

Amazon EC2: Elastic Compute Cloud

Understanding AWS Compute Services — From Zero to Hero

Serverless Computing

Getting to Know AWS Lambda

Mastering Serverless on AWS—From Zero to Hero

Getting Started with Serverless Event-Driven Architectures on AWS

Storage

Understanding AWS Storage Options—From Zero to Hero

Working with AWS S3 Cross-Region Replication

Databases

Working with NoSQL Databases: A Beginner's Guide to AWS DynamoDB

Working with Relational Databases: A Beginner's Guide to AWS RDS

Getting Started with Amazon Aurora Database Engine

Application Integration

Mastering Application Integration Services—From Zero to Hero

Fundamentals of AWS Step Functions

Security and Compliance

Protecting Web Applications Using AWS WAF

Getting Started with AWS Key Management Service (KMS)

Finding Vulnerabilities on EC2 Instances Using AWS Inspector

Analytics

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Getting Started with Amazon EMR

Building a Logs Processing Pipeline with Amazon Kinesis

Developer Tools

Mastering AWS Deployment Services—From Zero to Hero

Machine Learning

Understanding Machine Learning Services on AWS—From Zero to Hero

Deploying a Machine Learning Model with Amazon SageMaker

AWS Billing and Cost Management

Customer Engagement

Migration and Transfer

Monitoring and Auditing

Getting to Know Amazon CloudWatch

Getting Started with AWS Config

Management and Governance

Getting Started with AWS Systems Manager Parameter Store

Other AWS Services

Understanding AWS IoT Core with Lambda

Wrap Up

Practice Exam - AWS Certified Cloud Practitioner

Practice Exam Solution - AWS Certified Cloud Practitioner

Web Application Firewall (WAF) and AWS Shield

AWS WAF