├── .github ├── CODEOWNERS └── pull_request_template.md ├── .gitignore ├── LICENSE ├── Makefile ├── README.md ├── aws-security-logging ├── README.md ├── access-logging-config.json ├── athena-queries.txt ├── blog-posts │ ├── cloudtrail.md │ ├── s3-access-logging.md │ └── vpc-flow-logs.md └── cloudformation │ ├── cloudtrail.yml │ ├── s3-access-logs-bucket.yml │ ├── vpc-flow-logs-cloudwatch.yml │ └── vpc-flow-logs-s3.yml ├── aws-vault ├── README.md ├── cloudformation │ ├── identity-account-iam-groups.yml │ ├── identity-account-iam-users.yml │ └── production-account-iam-roles.yml └── example_vault_config ├── cloud-native-logging ├── 50-default.conf ├── README.md ├── cloudformation │ └── security-logging-infra.yml └── td-agent.conf ├── serverless-app-repository ├── README.md └── cloudformation │ ├── lambda-source-bucket.yml │ └── sample-application.yml └── workshops └── on-demand-detection-as-code-workshop.md /.github/CODEOWNERS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/.github/CODEOWNERS -------------------------------------------------------------------------------- /.github/pull_request_template.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/.github/pull_request_template.md -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | .out/ 2 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/Makefile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/README.md -------------------------------------------------------------------------------- /aws-security-logging/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/README.md -------------------------------------------------------------------------------- /aws-security-logging/access-logging-config.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/access-logging-config.json -------------------------------------------------------------------------------- /aws-security-logging/athena-queries.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/athena-queries.txt -------------------------------------------------------------------------------- /aws-security-logging/blog-posts/cloudtrail.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/blog-posts/cloudtrail.md -------------------------------------------------------------------------------- /aws-security-logging/blog-posts/s3-access-logging.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/blog-posts/s3-access-logging.md -------------------------------------------------------------------------------- /aws-security-logging/blog-posts/vpc-flow-logs.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/blog-posts/vpc-flow-logs.md -------------------------------------------------------------------------------- /aws-security-logging/cloudformation/cloudtrail.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/cloudformation/cloudtrail.yml -------------------------------------------------------------------------------- /aws-security-logging/cloudformation/s3-access-logs-bucket.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/cloudformation/s3-access-logs-bucket.yml -------------------------------------------------------------------------------- /aws-security-logging/cloudformation/vpc-flow-logs-cloudwatch.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/cloudformation/vpc-flow-logs-cloudwatch.yml -------------------------------------------------------------------------------- /aws-security-logging/cloudformation/vpc-flow-logs-s3.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-security-logging/cloudformation/vpc-flow-logs-s3.yml -------------------------------------------------------------------------------- /aws-vault/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-vault/README.md -------------------------------------------------------------------------------- /aws-vault/cloudformation/identity-account-iam-groups.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-vault/cloudformation/identity-account-iam-groups.yml -------------------------------------------------------------------------------- /aws-vault/cloudformation/identity-account-iam-users.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-vault/cloudformation/identity-account-iam-users.yml -------------------------------------------------------------------------------- /aws-vault/cloudformation/production-account-iam-roles.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-vault/cloudformation/production-account-iam-roles.yml -------------------------------------------------------------------------------- /aws-vault/example_vault_config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/aws-vault/example_vault_config -------------------------------------------------------------------------------- /cloud-native-logging/50-default.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/cloud-native-logging/50-default.conf -------------------------------------------------------------------------------- /cloud-native-logging/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/cloud-native-logging/README.md -------------------------------------------------------------------------------- /cloud-native-logging/cloudformation/security-logging-infra.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/cloud-native-logging/cloudformation/security-logging-infra.yml -------------------------------------------------------------------------------- /cloud-native-logging/td-agent.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/cloud-native-logging/td-agent.conf -------------------------------------------------------------------------------- /serverless-app-repository/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/serverless-app-repository/README.md -------------------------------------------------------------------------------- /serverless-app-repository/cloudformation/lambda-source-bucket.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/serverless-app-repository/cloudformation/lambda-source-bucket.yml -------------------------------------------------------------------------------- /serverless-app-repository/cloudformation/sample-application.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/serverless-app-repository/cloudformation/sample-application.yml -------------------------------------------------------------------------------- /workshops/on-demand-detection-as-code-workshop.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/panther-labs/tutorials/HEAD/workshops/on-demand-detection-as-code-workshop.md --------------------------------------------------------------------------------