Build a Malware Scanning Solution in AWS

Huge Logistics are about to launch an order upload portal, that allows clients to submit word and PDF documents for new container shipments. There's just one problem... there's no security yet and all documents are trusted! We need you to implement a security solution using native AWS services (and also VirusTotal) to scan the files and quarantine anything that is malicious.

• Non-Read-Only Filesystem: Ensure that all pods use a read-only filesystem to prevent unauthorized modifications.
• Privileged Escalation: Block pods where the AllowPrivilegeEscalation option in the security context is set to true, which can allow processes to gain additional privileges.
• Host Network Usage: Disallow the use of hostNetwork: true in pod specifications to prevent exposing the pod directly to the host network, reducing the risk of network-level attacks.
• Restrict HostPath Volumes: Restrict the use of hostPath volumes on a k8s pod.

• Basic knowledge of AWS

• Combine multiple AWS services to create a working security solution

When external users upload content to sites and applications that use Amazon S3 storage, that content cannot be trusted and may need to be scanned for malware before being used by applications and opened by other users. This solution provides a fully serverless, cloudnative way to scan unknown objects in Amazon S3 using VirusTotal's extensive database of antivirus engines.