Releases: awslabs/aws-security-analytics-bootstrap
Releases · awslabs/aws-security-analytics-bootstrap
Initial Release
[1.0.0] - 2021-07-02
Initial Release under Apache License Version 2.0
Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
New Features
CloudFormation Templates
- CloudFormation template to deploy a ready to use AWS Security Analytics Environment
- Ready to deploy, parameterized with walkthrough comments
- Athena Workgroup
- Encrypted output to specified location
- Demo named queries
- Glue Database
- Glue Tables
- AWS Cloudtrail
- partitioned by account, region, and date with dynamic partition projection configuration
- Amazon Virtual Private Cloud (VPC) Flow Logs
- partitioned by account, region, and date with dynamic partition projection configuration
- Amazon Route53 DNS Resolve Logs
- partitioned by account, VPC-id, and date with dynamic partition projection configuration
- AWS Cloudtrail
- CloudFormation template to deploy IAM admin and user roles
- Provides IAM policy examples to start using Athena following principle of least privilege
- CloudFormation template to enable VPC Flow Logs with all availble fields (v2-v5) for a specified VPC, Subnet, or ENI
CREATE TABLE SQL statements
- Enables adhoc creation of Glue Tables via Athena SQL statement:
- AWS Cloudtrail
- partitioned by account, region, and date with dynamic partition projection configuration
- Amazon Virtual Private Cloud (VPC) Flow Logs
- partitioned by account, region, and date with dynamic partition projection configuration
- Amazon Route53 DNS Resolve Logs
- partitioned by account, VPC-id, and date with dynamic partition projection configuration
- AWS Cloudtrail
Demo Athena Queries
- AWS Cloudtrail
- Amazon Virtual Private Cloud (VPC) Flow Logs
- Amazon Route53 DNS Resolve Logs
Added
- Deployment Guide
- README
- Misc required project files