Slides from ZendCon/OE 10/16/18 in Las Vegas

1. @awsgeek lucidchart.com
From Zero to
DevSecOpsin
60 Minutes

2. @awsgeek lucidchart.com

3. @awsgeek lucidchart.com
From Zero to
DevSecOpsin
60 Minutes

4. @awsgeek lucidchart.com
60 Minutes45
DevSecOpsin
From Zero to

5. @awsgeek lucidchart.com

6. @awsgeek lucidchart.com

7. @awsgeek lucidchart.com

8. @awsgeek lucidchart.com

9. @awsgeek lucidchart.com

10. @awsgeek lucidchart.com

11. @awsgeek lucidchart.com

12. @awsgeek lucidchart.com

13. @awsgeek lucidchart.com

14. @awsgeek lucidchart.com

15. @awsgeek lucidchart.com

16. @awsgeek lucidchart.com

17. @awsgeek lucidchart.com

18. @awsgeek lucidchart.com

19. @awsgeek lucidchart.com

20. @awsgeek lucidchart.com

21. @awsgeek lucidchart.com
…
AWS
Event
Producers

22. @awsgeek lucidchart.com
…
AWS
Event
Producers

23. @awsgeek lucidchart.com

24. @awsgeek lucidchart.com
1

25. @awsgeek lucidchart.com
1 2

26. @awsgeek lucidchart.com
1 2 3

27. @awsgeek lucidchart.com
1 2 3

28. @awsgeek lucidchart.com
<?php
require 'vendor/autoload.php';
$ec2 = new AwsEc2Ec2Client([
'version' => 'latest',
'region' => 'us-west-2'
]);
$res = $ec2->startInstances([
'InstanceIds' => [ id1, id2, ... ],
...
]);

29. @awsgeek lucidchart.com
"eventTime": "2018-02-07T22:18:40Z",
"eventSource": "ec2.amazonaws.com",
"eventName": "StartInstances",
"awsRegion": "us-west-2",
"sourceIPAddress": "24.25.26.27",

30. @awsgeek lucidchart.com

31. @awsgeek lucidchart.com

32. @awsgeek lucidchart.com

33. @awsgeek lucidchart.com

34. @awsgeek lucidchart.com
"eventVersion": "1.05",
"principalId": "123456789012",
"arn":"arn:aws:iam::xx:user/jerry",
"accountId": "123456789012",
"accessKeyId": "abcdefghijklmnop",
"userName": "jerry",

35. @awsgeek lucidchart.com

36. @awsgeek lucidchart.com

37. @awsgeek lucidchart.com

38. @awsgeek lucidchart.com
AWS
Event
Consumers

39. @awsgeek lucidchart.com
AWS
Event
Consumers

40. @awsgeek lucidchart.com

41. @awsgeek lucidchart.com

42. @awsgeek lucidchart.com

43. @awsgeek lucidchart.com

44. @awsgeek lucidchart.com

45. @awsgeek lucidchart.com
1

46. @awsgeek lucidchart.com
<?php
require 'vendor/autoload.php';
$ct = new AwsCloudTrailCloudTrailClient([
'version' => 'latest',
'region' => 'us-west-2'
]);
$res = $ct->stopLogging([
'Name' => <trail name>,
...
]);

47. @awsgeek lucidchart.com
2
1

48. @awsgeek lucidchart.com
2
1
3

49. @awsgeek lucidchart.com
A

50. @awsgeek lucidchart.com
2
1
3
4

51. @awsgeek lucidchart.com
function processEvent(event, callback):
region = event['detail']['awsRegion']
message = {
'channel': SLACK_CHANNEL,
'text’:
"CloudTrail disabled in %s" %(region)
}
...
response = urlopen(req)

52. @awsgeek lucidchart.com
A
B

53. @awsgeek lucidchart.com
C
A
B

54. @awsgeek lucidchart.com
2
1
3
4
5

55. @awsgeek lucidchart.com
2
1
3
4
5

56. @awsgeek lucidchart.com

57. @awsgeek lucidchart.com

58. @awsgeek lucidchart.com

59. @awsgeek lucidchart.com
2
1
3

60. @awsgeek lucidchart.com
2
1
3
4

61. @awsgeek lucidchart.com
2
1
3
4
5

62. @awsgeek lucidchart.com
2
1
3
4
5

63. @awsgeek lucidchart.com

64. @awsgeek lucidchart.com

65. @awsgeek lucidchart.com

66. @awsgeek lucidchart.com

67. @awsgeek lucidchart.com

68. @awsgeek lucidchart.com
1

69. @awsgeek lucidchart.com
2
1

70. @awsgeek lucidchart.com
2
3
1

71. @awsgeek lucidchart.com
2
3
4
1

72. @awsgeek lucidchart.com
exports.subscribe = (event, callback) => {
...
const options = url.parse(slackUrl);
options.method = 'POST’;
...
const post = https.request(options,

73. @awsgeek lucidchart.com
2
3
4
1 5

74. @awsgeek lucidchart.com

75. @awsgeek lucidchart.com

76. @awsgeek lucidchart.com

77. @awsgeek lucidchart.com

78. @awsgeek lucidchart.com

79. @awsgeek lucidchart.com
1

80. @awsgeek lucidchart.com
2
1
3
4

81. @awsgeek lucidchart.com
2
1
3
4
5

82. @awsgeek lucidchart.com

83. @awsgeek lucidchart.com

84. @awsgeek lucidchart.com

85. @awsgeek lucidchart.com
1
2
3
4
5
6

86. @awsgeek lucidchart.com

87. @awsgeek lucidchart.com
ThankYou!
Read more:
lucidchart.com/blog/cloud
Follow:
@awsgeekon Twitter
See more:
awsgeek.com