Security & Incident Response

Security & Incident Response Scenarios

AWS security scenarios covering leaked credentials, compromised instances, IAM hardening, and GuardDuty-led investigations.

Scenarios

Difficulty Levels

100%

Free

Hands-on Labs

Security & Incident Response

Scenario Labs

← All Scenarios

Advanced Aws

awssecurityec2

EC2 Instance Communicating with Malicious IP — Incident Response

Your VPC flow logs show an EC2 instance sending traffic to a known malicious IP address. Walk through containment, forensic investigation, eradication, and prevention.

~35 min 6 steps 7 services

Free Start Scenario

Advanced Aws

awssecurityiam

Developer Pushed AWS Credentials to Public GitHub — Incident Response

A developer accidentally committed live AWS access keys to a public GitHub repository. Walk through the immediate containment, investigation, and prevention strategy.

~30 min 6 steps 6 services

Free Start Scenario

Security & Incident Response Scenarios

Scenario Labs

EC2 Instance Communicating with Malicious IP — Incident Response

Developer Pushed AWS Credentials to Public GitHub — Incident Response

No scenarios found

🧩 Suggest a Real-World Scenario