Merge pull request #169 from godinezj/week8_jg_contribs

Updated prior week content

Author: godinezj

Week-4/README.md

@@ -6,13 +6,13 @@ During Week 4, we'll understand the basics of keeping technology available, hunt
 - Using logging and instrumentation to find attackers
 - Detection & Alerting
 
-## [Getting to know your data](LESSON-1.md)
+## [LESSON 1: Getting to know your data](LESSON-1.md)
 During this lesson, we'll begin to understand basic logging and evaluate how an attacker can access a system from behind the scenes.  In this session, we'll understand some basics for a popular logging system.
 
-## [Create and test alerts](LESSON-2.md)
+## [LESSON 2: Create and test alerts](LESSON-2.md)
 Creating and testing alerts can help you to identify when attacks are happening.  This can help to aid in the strength of protective controls or allow for risks to be evaluated.
 
-## [Creating reports and dashboards](LESSON-3.md)
+## [LESSON 3: Creating reports and dashboards](LESSON-3.md)
 Enabling reporting and dashboards for the blue team to help discover an attacker quickly can make or break an app that depends on quick detection and response.
 
 ## Resources

Week-5/README.md

@@ -6,13 +6,13 @@ Building rugged and secure applications is not trivial. Software Engineers and D
 - Understanding AWS CloudFormation Templates
 - Scaling Infrastructure-as-Code
 
-## [Infrastructure-as-Code](LESSON-1.md)
+## [LESSON 1: Infrastructure-as-Code](LESSON-1.md)
 During this lesson, we'll be introduced to the concept "Infrastructure-as-Code". What it is and what benefits it provides us.
 
-## [Application Availability & CloudFormation](LESSON-2.md)
+## [LESSON 2: Application Availability & CloudFormation](LESSON-2.md)
 Understanding AWS CloudFormation Templates and patterns for safe and secure infrastructure.
 
-## [End-to-End Infrastructure-as-Code](LESSON-3.md)
+## [LESSON 3: End-to-End Infrastructure-as-Code](LESSON-3.md)
 Scaling Infrastructure-as-Code.
 
 ## Resources

Week-6/LESSON-1.md

@@ -1,4 +1,4 @@
-# Lesson 1: Infrastructure as Code (IaC) [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-six-lesson-one.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-6-lesson-1)
+# Lesson 1: Offensive Security [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-six-lesson-one.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-6-lesson-1)
 
 ##  
 

Week-6/LESSON-3.md

@@ -1,4 +1,4 @@
-# Lesson 3: End-to-end Infrastructure as Code [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-six-lesson-three.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-6-lesson-3)
+# Lesson 3: AWS IAM Security [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-six-lesson-three.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-6-lesson-3)
 
 ## Agenda
 

Week-6/README.md

@@ -1,32 +1,17 @@
-<!-- START doctoc generated TOC please keep comment here to allow auto update -->
-<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->
-**Table of Contents**  *generated with [DocToc](https://github.com/thlorenz/doctoc)*
-
-- [WEEK 6 OUTLINE](#week-6-outline)
-  - [OBJECTIVES](#objectives)
-  - [AGENDA](#agenda)
-  - [BONUS LABS](#bonus-labs)
-  - [ASSIGNMENTS](#assignments)
-
-<!-- END doctoc generated TOC please keep comment here to allow auto update -->
-
 # WEEK 6: Rugged Sec
+The Cloud introduces a new attack vector into our environment which needs to be well understood and mitigated. Techniques demonstrated this week will enable awareness to ways infrastructure can be abused by attackers.
 
 ## OBJECTIVES
 - Account Takeovers
 - Advanced cloud hacking techniques:
   - Lateral movement
   - Privilege escalation
 
-## AGENDA
-TIME | TOPIC
----|---
-5 PM - 5:50 PM | Thinking Outside the Box
-6 PM - 6:45 PM | Lab: Deploy vulnerable `Jenkins` or `JBOSS` & exploit via Java Deserialization
-7 PM - 7:50 PM | Lab: Advanced cloud hacking techniques
-8 PM - 9 PM | Lab: Advanced cloud hacking techniques
 
-## BONUS LABS
-- Write a Java Deserialization Payload
+## [Lesson 1: Offensive Security](LESSON-1.md)
+
+## [Lesson 2: Network Attack](LESSON-2.md)
+
+## [Lesson 3: AWS IAM Security](LESSON-3.md)
 
-## ASSIGNMENTS
+## Resources

Week-7/LESSON-1.md

@@ -1,4 +1,4 @@
-# Lesson 1:  [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-seven-lesson-one.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-7-lesson-1)
+# Lesson 1: Gathering Forensics Data [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-seven-lesson-one.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-7-lesson-1)
 
 ## Agenda
 

Week-7/LESSON-2.md

@@ -1,4 +1,4 @@
-# Lesson 2:  [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-seven-lesson-two.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-7-lesson-2)
+# Lesson 2: Capturing Forensic Images [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-seven-lesson-two.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-7-lesson-2)
 
 ## Agenda
 

Week-7/LESSON-3.md

@@ -1,12 +1,13 @@
-# Lesson 3:  [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-eight-lesson-three.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-8-lesson-3)
+# Lesson 3: Performing Basic Forensics [![slides](../_images/slides-clean.png)](slides/june-DSO-bootcamp-week-eight-lesson-three.pdf)[![view](../_images/view-clean.png)](https://speakerdeck.com/devsecops/devsecops-bootcamp-week-8-lesson-3)
 
 ## Agenda
 
 ```
-*
-*
-*
-*
+* Forensic Investigation Basics
+* Enterprise Forensic Analysis
+* Memory
+* Disk
+* Tools
 * Lab 3
 ```
 

Week-7/README.md

@@ -1,29 +1,19 @@
-<!-- START doctoc generated TOC please keep comment here to allow auto update -->
-<!-- DON'T EDIT THIS SECTION, INSTEAD RE-RUN doctoc TO UPDATE -->
-**Table of Contents**  *generated with [DocToc](https://github.com/thlorenz/doctoc)*
-
-- [WEEK 7 OUTLINE](#week-7-outline)
-  - [OBJECTIVES](#objectives)
-  - [AGENDA](#agenda)
-
-<!-- END doctoc generated TOC please keep comment here to allow auto update -->
-
 # WEEK 7: Incident Response and Forensics
+The 90's called, they want their datacenter back. The Cloud is not the datacenter, and so we must reinvent forensics for the Cloud. We do not have direct access to hosts and network, but we do have the tools at our disposal to perform forensics.
 
 ## OBJECTIVES
 - Incident Response on the Cloud
 - Cloud Forensics
 
-## AGENDA
-TIME | TOPIC
----|---
-6 PM - 6:50 PM | Lab 1
-7 PM - 7:45 PM | Lab 2
-8 PM - 8:30 PM | Lab 3
+# Lesson 1: Gathering Forensics Data
+
+# Lesson 2: Capturing Forensic Images
+
+# Lesson 3: Performing Basic Forensics
 
 ## Resources
 - [Week 6 Lab 2](../Week-6/labs/LAB-2.md)
 - [Week 6 Lab 3](../Week-6/labs/LAB-3.md)
 - [Forensics Wiki](http://forensicswiki.org/wiki/Main_Page)
 - [AWS CLI Reference](http://docs.aws.amazon.com/cli/latest/reference/)
-- [Forensics Tools](http://www.forensicswiki.org/wiki/Tools) 
+- [Forensics Tools](http://www.forensicswiki.org/wiki/Tools)