AWS Security ChangesHomeSearch

AWS solutions documentation change

Service: solutions · 2025-05-10 · Documentation low

File: solutions/latest/automated-forensics-orchestrator-for-amazon-ec2/optional-additional-configuration-cloud9-environment-setup.md

Summary

Changed 'solution' to 'Guidance' terminology and updated contact section from 'Contact Support' to 'Troubleshooting'

Security assessment

Terminology updates and section renaming. While the document discusses forensic security tools (LiME, Volatility), the changes themselves don't introduce new security documentation or address vulnerabilities. The responsibility note about tool management was already present.

Diff

diff --git a/solutions/latest/automated-forensics-orchestrator-for-amazon-ec2/optional-additional-configuration-cloud9-environment-setup.md b/solutions/latest/automated-forensics-orchestrator-for-amazon-ec2/optional-additional-configuration-cloud9-environment-setup.md
index 85ab54826..f26e59cdc 100644
--- a//solutions/latest/automated-forensics-orchestrator-for-amazon-ec2/optional-additional-configuration-cloud9-environment-setup.md
+++ b//solutions/latest/automated-forensics-orchestrator-for-amazon-ec2/optional-additional-configuration-cloud9-environment-setup.md
@@ -5 +5 @@
-Solution customizationsCustomization of CDK context configurations
+Guidance customizationsCustomization of CDK context configurations
@@ -44 +44 @@ Solution customizationsCustomization of CDK context configurations
-## Solution customizations
+## Guidance customizations
@@ -69 +69 @@ Sample S3 command:
-The solution uses SANS SIFT to build necessary tools required to perform forensic investigation, and the Amazon EC2 Image Builder to build SANS SIFT image.
+The Guidance uses SANS SIFT to build necessary tools required to perform forensic investigation, and the Amazon EC2 Image Builder to build SANS SIFT image.
@@ -73 +73 @@ The solution uses SANS SIFT to build necessary tools required to perform forensi
-The solution uses SSM documents to perform memory acquisition, memory investigation, and disk investigation. You can update the tools leveraged in memory acquisition, memory investigation, and disk investigation with other tools based on forensic requirements. 
+The Guidance uses SSM documents to perform memory acquisition, memory investigation, and disk investigation. You can update the tools leveraged in memory acquisition, memory investigation, and disk investigation with other tools based on forensic requirements. 
@@ -77 +77 @@ The solution uses SSM documents to perform memory acquisition, memory investigat
-For memory acquisition, the solution provides a [sample SSM document](https://github.com/504ensicsLabs/LiME), which leverages Linux Memory Extractor (LiME) to perform memory acquisition. 
+For memory acquisition, the Guidance provides a [sample SSM document](https://github.com/504ensicsLabs/LiME), which leverages Linux Memory Extractor (LiME) to perform memory acquisition. 
@@ -93 +93 @@ to:
-You can update the memory investigation step with other tools by updating the SSM commands. The sample command clones the GitHub link to set up Volatility in the compromised instance. The updated command below downloads the Volatility components from an internal S3 bucket to the AWS account. The solution depends on the Volatility profile of the OS and kernel version of the compromised instance. The Volatility profile is a prerequisite to perform memory investigation. 
+You can update the memory investigation step with other tools by updating the SSM commands. The sample command clones the GitHub link to set up Volatility in the compromised instance. The updated command below downloads the Volatility components from an internal S3 bucket to the AWS account. The Guidance depends on the Volatility profile of the OS and kernel version of the compromised instance. The Volatility profile is a prerequisite to perform memory investigation. 
@@ -95 +95 @@ You can update the memory investigation step with other tools by updating the SS
-For memory investigation, the solution provides a sample SSM document which leverages Volatility 2 to perform memory investigation. 
+For memory investigation, the Guidance provides a sample SSM document which leverages Volatility 2 to perform memory investigation. 
@@ -109 +109 @@ to the sample command:
-For disk investigation, the solution provides the sample command leveraging `log2timeline` to perform disk investigation. 
+For disk investigation, the Guidance provides the sample command leveraging `log2timeline` to perform disk investigation. 
@@ -115 +115 @@ You can update the memory investigation step with other tools by updating the SS
-The forensic tools code shared in the section are example codes. You are responsible for managing and maintaining the tools used in the solution. 
+The forensic tools code shared in the section are example codes. You are responsible for managing and maintaining the tools used in the Guidance. 
@@ -133 +133 @@ CDK config  |  Default value  |  Description
-**ForensicIsolationInstanceProfileName** |  `target_profile_name` | Customer profile for isolation. By default it would be the profile provided by this solution’s CDK stack.   
+**ForensicIsolationInstanceProfileName** |  `target_profile_name` | Customer profile for isolation. By default it would be the profile provided by this Guidance's CDK stack.   
@@ -194 +194 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please
-Contact Support
+Troubleshooting