Skip to content

FireTail-io/customer-exfil-demo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
dynamodb-example
dynamodb-example
 
 
s3-example
s3-example
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Customer Data Exfiltration Demo

Purpose

Use this to set up a demo API in AWS that exposes sensitive customer data.

The API is not publicly accessible but will appear in a FireTail AWS resource scan.

Usage

Create Resources With CloudFormation

AWS Web Console

  • Navigate to the CloudFormation > Stacks
  • Select 'Create Stack' > 'With new resources (standard)'
  • Select 'Choose an existing template' and 'Upload a template file'
  • Select either the DynamoDB or S3 cf-template.yaml file from this repo and click 'Next'
  • Enter your desired stack name and click 'Next' again
  • Leave the defaults in place and click through to resource completion
  • Get the S3 bucket name and/or DynamoDB table name from the 'Resources' once the resources have been provisioned

AWS CLI

aws cloudformation deploy --template-file dynamodb-example/cf-template.yaml --stack-name ${your_stack_name}

or

aws cloudformation deploy --template-file s3-example/cf-template.yaml --stack-name ${your_stack_name}

Populate Fake Customer Records

Assuming you have Python 3 installed:

python -m venv .venv
source .venv/bin/activate
pip install -r requirements.txt

then, if S3

S3_BUCKET_NAME=${your_bucket} python3 s3-example/populate.py

or for DynamoDB

DDB_TABLE_NAME=${your_table} python3 dynamodb-example/populate.py

About

No description, website, or topics provided.

Resources

Readme

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages