In this video we will be doing a demo on AWS Web Application Firewall (WAF). We will be taking the example of a specific security vulnerability - Server-side Request Forgery (SSRF), and we will be demonstrating how AWS WAF could be used to prevent this vulnerability.
SSRF Vulnerable Web App (Watch a pre-req for this lab) --https://youtu.be/h_OSlsXJylU
Chapters:
00:03 Introduction
02:34 Pre-requisite: SSRF Vulnerable Web App
05:39 Lab 1 - Create Load Balancer in front of web app
12:02 Lab 2 - Create WAF Web ACL for preventing SSRF
16:25 Lab 3 - Test the remediation for SSRF
Prefer to read an article? https://medium.com/cloud-security-masterclass/aws-waf-demo-protecting-against-ssrf-attacks-06174111c22f
