Using AWS Lambda to Revert Unauthorized Security Group Changes
Welcome to this AWS Learning Activity where we will be dealing with a real-world use case leveraging Lambda services. Using Lambda, along with a few other services, we are going to proactively monitor a web server EC2 security group for any traffic rule changes. If we detect any unauthorized changes, we will then undo them using Lambda. There will also be an SNS notification sent out to the admins, which is us. In this activity we will be working with the following services: - Lambda - SNS - CloudTrail - CloudWatch - CloudFormation - EC2 - VPC - S3 This scenario is a working example of how we can use Lambda to perform various operation tasks within our account, especially ones that maintain our security posture.