Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Amazon inspector で自動セキュリティ診断 / Automatic secur...
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Ryo Shibayama
November 20, 2016
Technology
79
0
Share
Amazon inspector で自動セキュリティ診断 / Automatic security diagnostics with Amazon inspector
Ryo Shibayama
November 20, 2016
More Decks by Ryo Shibayama
See All by Ryo Shibayama
技術広報の集い #3 Lightning Talk - LayerX
serima
0
430
採用は全員で | Chuo TECH #1
serima
4
1.5k
高専 5 年時に 7 泊 8 日の合宿型ビジコンに参加したら人生が変わった
serima
0
430
カジュアル面談を通して “自社”のことを知る
serima
0
270
倒れても進捗 / Progress even if I fall
serima
1
860
CircleCI 導入への入門 / Introduction to CircleCI
serima
0
130
GameWithを支えるインフラ基盤 - スケールイン・アウト戦略編 / GameWith infrastructure - Scale in and out strategy
serima
0
92
エンジニア採用と PHP / Engineer Recruitment and PHP
serima
0
110
できることから始める OSS Contribution / Start OSS Contribution With What You Know
serima
1
260
Other Decks in Technology
See All in Technology
Zero Data Loss Autonomous Recovery Service サービス概要
oracle4engineer
PRO
4
14k
第26回FA設備技術勉強会 - Claude/Claude_codeでデータ分析 -
happysamurai294
0
400
🀄️ on swiftc
giginet
PRO
0
240
Oracle AI Database@Google Cloud:サービス概要のご紹介
oracle4engineer
PRO
6
1.3k
40代からのアウトプット ― 経験は価値ある学びに変わる / 20260404 Naoki Takahashi
shift_evolve
PRO
5
910
【関西電力KOI×VOLTMIND 生成AIハッカソン】空間AIブレイン ~⼤阪おばちゃんフィジカルAIに続く道~
tanakaseiya
0
180
【PHPカンファレンス小田原2026】Webアプリケーションエンジニアにも知ってほしい オブザーバビリティ の本質
fendo181
0
460
申請待ちゼロへ!AWS × Entra IDで実現した「権限付与」のセルフサービス化
mhrtech
1
190
マルチモーダル非構造データとの闘い
shibuiwilliam
2
300
New CBs New Challenges
ysuzuki
1
160
Podcast配信で広がったアウトプットの輪~70人と音声発信してきた7年間~/outputconf_01
fortegp05
0
240
暗黙知について一歩踏み込んで考える - 暗黙知の4タイプと暗黙考・暗黙動へ
masayamoriofficial
0
620
Featured
See All Featured
The Limits of Empathy - UXLibs8
cassininazir
1
290
Game over? The fight for quality and originality in the time of robots
wayneb77
1
160
Code Review Best Practice
trishagee
74
20k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
9
1.2k
A Soul's Torment
seathinner
5
2.6k
What does AI have to do with Human Rights?
axbom
PRO
1
2.1k
Into the Great Unknown - MozCon
thekraken
40
2.3k
Paper Plane
katiecoart
PRO
1
49k
WENDY [Excerpt]
tessaabrams
9
37k
svc-hook: hooking system calls on ARM64 by binary rewriting
retrage
2
200
Marketing Yourself as an Engineer | Alaka | Gurzu
gurzu
0
170
Design of three-dimensional binary manipulators for pick-and-place task avoiding obstacles (IECON2024)
konakalab
0
390
Transcript
Amazon Inspector Ͱ ࣗಈηΩϡϦςΟஅ גࣜձࣾβούϥε @serima / ࣲࢁ ྮ
ࣗݾհ • ىۀˠ·͙·͙ˠάϦʔˠβούϥε • βούϥεೖࣾ 1 ܦͬͨ • αʔόαΠυΤϯδχΞ •
Πϯϑϥ͍ͬͯ·͢
Rint
AWS ͬͯ·͢ • βούϥεͰɺҰ෦αʔϏεͰ AWS Λར༻ • EC2/ELB/Route 53/S3/RDS/ElastiCache
• ελϯμʔυͳߏ
੬ऑੑ ಡΊͳ͍
੬ऑੑ • γεςϜͷ҆શ্ͷܽؕ • ηΩϡϦςΟϗʔϧ • ์͓ͬͯ͘ͱɺ͜ΕΛಥ͔ΕͯඃΛड͚Δ Մೳੑ͕͋Δ
ຖिͷΑ͏ʹݟ͔ͭΔ੬ऑੑ
ใݯ • JPCERT • IPA • Wordpress ެࣜαΠτ • PHP
ެࣜαΠτ • ଞʹ͍Ζ͍Ζ…
None
CVE • Common Vulnerabilities and Exposures • ڞ௨੬ऑੑࣝผࢠ • ถࠃͷMITRE͕ࣾఏڙ͍ͯ͠Δ੬ऑੑใ
σʔλϕʔε • CVE-ID ҰҙʹৼΒΕɺੈքڞ௨
ηΩϡϦςΟνΣοΫɺ ͯ͠·͔͢ʁ
Amazon Inspector • 20165݄ʹҰൠར༻։࢝ • EC2 Πϯελϯεͷ੬ऑੑΛݕͯ͘͠ΕΔ αʔϏε
None
None
ԿͷνΣοΫ͕Ͱ͖Δͷ͔ • Common Vulnerabilities and Exposures • CIS Operating System
Security Configuration Benchmarks • Security Best Practices • Runtime Behavior Analysis
खॱ • Inspector ༻ͷϩʔϧΛ࡞͢Δ • ରͱ͢Δ EC2 ΠϯελϯεʹλάΛઃఆ • σʔϞϯΛΠϯετʔϧ
• ධՁςϯϓϨʔτͷ࡞ • Ͳͷλά͕͍ͭͨΠϯελϯεʹ͍࣮ͭͯߦ͢Δͷ͔ • ԿͷηΩϡϦςΟνΣοΫΛߦ͏ͷ͔ • ࣮ߦ
None
$ curl -O https:// d1wk0tztpsntt1.cloudfront. net/linux/latest/install $ sudo bash install
None
ࢼݧ༻ʹ OpenSSL ͷ όʔδϣϯ͕গ͠ݹ͍ ΠϯελϯεΛ༻ҙ
None
݁Ռ
ͦΕͧΕʹ͍ͭͯৄࡉઆ໌ͱରॲ๏͕ࢀরͰ͖Δ
Ϧϕϯδ ͱΓ͋͑ͣॏཁ High ͷͷͳ͘ͳͬͨ
֦͕Γͱͯ͠ • Amazon SNS ରԠ͍ͯ͠ΔͷͰɺྃ࣌ʹ Slack ͳͲʹ௨ • ͪΖΜ SDK
ެ։͞Ε͍ͯΔͷͰɺఆظత ʹࣗಈ࣮ߦͤ͞Δ͜ͱՄೳ ʢࠓͷͱ͜Ζίϯιʔϧ͔ΒͰ͖Δػೳͳ ͛͞ʣ
҆৺ɾ҆શͳ։ൃΛ • ͱ͍͑ɺ͜Ε͚ͩͰෆे • ੬ऑੑʹରͯ͠ɺҰఆͷอݥΛ͔͚Δ • χϡʔεΛνΣοΫͯ͠ɺదͳରԠΛʂ
SiteGround - Reliable hosting with speed, security, and support you can count on.
serima
oracle4engineer
happysamurai294
giginet
shift_evolve
tanakaseiya
fendo181
mhrtech
shibuiwilliam
ysuzuki
fortegp05
masayamoriofficial
cassininazir
wayneb77
trishagee
irinanazarova
seathinner
axbom
thekraken
katiecoart
tessaabrams
retrage
gurzu
konakalab
