I'm a junior studying cybersecurity, and I have about $100 in free AWS credits that I want to use up before canceling my account. I've already built a honeypot, but I'm open to any cool project ideas from all areas of cybersecurity—be it pentesting, security operations, or anything else. What do you suggest?
3 Answers
How about creating a small insecure-by-design AWS setup and then focusing on hardening it? You could use one EC2 instance, an S3 bucket, and implement CloudTrail, Security Hub, and GuardDuty. Intentionally leave a few bad configurations, like a public S3 bucket and no MFA, to see how they get flagged. This hands-on experience will teach you a lot about security in a real-world context!
You should definitely try to set up EC2 with Amazon Inspector. It's a straightforward way to scan for vulnerabilities, and it's easy to implement. Plus, check out AWS's best practices document for things like MFA and CloudTrail—these are essential for any AWS account.
You might also want to look into AWS's security specialist certification resources. Diving into the services covered in that program can give you a great foundation and plenty of practical application ideas.
Related Questions
How To Get Your Domain Unblocked From Facebook
How To Find A String In a Directory of Files Using Linux