Secure Web App Sign-In and Sign-Up Using AWS WAF Fraud Controls

CLOUD LABS

Secure Web App Sign-In and Sign-Up Using AWS WAF Fraud Controls

In this Cloud Lab, you’ll learn to secure a web application sign-in and sign-up endpoints with AWS WAF ATP and ACFP, and validate protection by simulating automated fraud attempts.

9 Tasks

intermediate

2hr

Certificate of Completion

Desktop OnlyDevice is not compatible.

No Setup Required

Amazon Web Services

Learning Objectives

Hands-on experience deploying a web application behind an Application Load Balancer

Working knowledge of enabling AWS WAF fraud control features for sign-in and sign-up endpoints

The ability to simulate common automated abuse patterns against authentication and registration flows

An understanding of reviewing WAF findings to surface suspicious activity

Technologies

WAF

ALB

EC2

CloudWatch

Desktop Only

No Setup Required

Amazon Web Services

Labs Rules Apply

Stay within resource usage requirements.

Do not engage in cryptocurrency mining.

Do not engage in or encourage activity that is illegal.

Cloud Lab Overview

AWS WAF is a layer-7 web application firewall designed to protect web applications from common threats and attempts to exploit vulnerabilities that could compromise their availability and security posture. AWS WAF empowers users to define granular rules that monitor web requests to block high-risk fraudulent attempts.

In this Cloud Lab, you’ll explore how AWS WAF leverages account takeover prevention (ATP) and AWS account creation fraud prevention (ACFP) managed rule groups to strengthen application security. You’ll deploy a demo Flask app on EC2 behind an Application Load Balancer (ALB), serving simple sign-up and sign-in pages with no initial defenses, making it susceptible to credential stuffing and fake account creation attacks. Next, you’ll enable AWS WAF fraud controls to protect the application sign-in and sign-up endpoints. Finally, you’ll simulate automated traffic to validate that these protections safeguard your application from abuse, provide real-time visibility into fraud attempts, and effectively guard your web application.

The following is the high-level architecture diagram of the infrastructure you’ll create in this Cloud Lab:

Cloud Lab Tasks

1.Introduction

Getting Started

2.Application Setup

Create an EC2 Instance

Create an Application Load Balancer (ALB)

Evaluate Application’s Security Posture

3.Configure AWS WAF Rules

Create a WAF Web ACL

Apply ATP Managed Rule

Apply ACFP Managed Rule

4.Conclusion

Clean Up

Wrap Up

Labs Rules Apply

Stay within resource usage requirements.

Do not engage in cryptocurrency mining.

Do not engage in or encourage activity that is illegal.

Before you start...

Try these optional labs before starting this lab.

Cloud Lab

Protecting Web Applications Using AWS WAF

intermediate

1hr 30m

Cloud Lab

Applying Multilayer API Security Using Cognito and WAF

intermediate

2hr

Relevant Course

Use the following content to review prerequisites or explore specific concepts in detail.

Hear what others have to say

Join 1.4 million developers working at companies like

"Your method is simple, straight to the point and I can practice with it everywhere, even from my phone, that's something I have never had in other learning platforms."

Felipe Matheus

Software Engineer

"I highly recommend Educative. The courses are well organized and easy to understand."

Adina Ong

Senior Engineering Manager

"I prefer Educative courses because they have a nice mix of text & images. I find that with full video courses, it can often be too easy to go into passive learning mode."

Clifford Fajardo

Senior Software Engineer

"I love the content on Educative and I feel as if I am definitely improving in my craft."

Thomas Chang

Software Engineer

Learn in-demand tech skills in half the time

PRODUCTS

Mock Interview

New

Courses

Skill Paths

Projects

Assessments

Newsletter