AWS Security Hands-On Workshop

This is a scenario-based hands-on workshop designed for Splunk security customers already in or moving into AWS. The scenarios use different pieces of cloud-focused data and include a key compromise, a public S3 bucket, and network attacks which incorporate content from ESCU or SSE to detect and investigate malicious activity. The workshop leverages the popular Boss of the SOC (BOTS) v3 dataset and is laid out in an interactive format.