Home > Hands-On Labs > Lab
This lab is only accessible to Cybr Premium members
View Plans or Login
Comments
What's a Hands-On Lab?
1-Click Deployments
AWS lab environments at the click of a button. Skip the hassle of creating or managing practice accounts and dive straight into using real resources.
Practical Learning
Learn cloud security with real AWS resources and real-world scenarios, not just theory.
Risk Free
No surprise bills when you forget to delete learning resources, and keep vulnerable training environments safely isolated from your corporate and production resources.
Responses
Attached video would be more helpful than the screen shots it consumes more time
We’re working towards back-filling a lot of the videos for newer labs but in the meantime we have a live stream walking through this lab you can view here: https://www.youtube.com/live/tLEoWP5atMA?si=GA86aZLrwpt-OXr2&t=304
this was great love it
This is an awesome lab. Very easy to follow
Thanks for the feedback! Glad you liked it 🙂
Thank you for this, it’s really helpful.
I wanted to ask : if our goal is to monitor an organization with around 60–70+ accounts (with CloudTrail Trail enabled):
Would using CloudWatch metrics and dashboards at that scale be cost-effective? And in practice, does it tend to generate a lot of noise in alerts? what would be the best approach for this>?
I’d really appreciate your thoughts on how this approach scales in real-world setups. Thank you.
Cost is one of the issues with using CloudWatch unfortunately. Common alternatives I see used are Grafana + Prometheus, or ElastichSearch (Opensearch) and Kibana. All of these can either be self hosted or managed. DataDog (and similar competitors) is also used by a lot, but that gets very expensive so it wouldn’t solve your budget concerns. It is a lot more powerful than CloudWatch though. Regardless of what you use, it can all end up generating a lot of noise. I would recommend sitting down and generating threat models so you can identify the risks that matter the most to your org, and then generating alerts that map to those risks. Unlike all of the security vendor blog posts try to claim, you don’t need to alert on everything.
Cool and very straightforward lab
Thanks for the feedback and glad you liked it!