#attack, #supply-chain

Write up on the "underground" market for buying and selling access to companies. Top methods are still RDP and VPN access.

#aws, #build, #kubernetes

How to get started using the cosigned admission controller on Amazon EKS, preventing unverified containers from running in your Kubernetes cluster.

#defend, #gcp, #kubernetes

How to connect to the control plane of a GKE private cluster, leveraging a proxy and an IAP tunnel.

#gcp, #iam

Generating and distributing service account keys poses severe security risks to your organization. You don't actually have to download these long-lived keys. There's a better way!

#aws, #explain, #iam

Step-by-step guide including helpful recommendations for replacing hard-coded credentials with temporary credentials using SSO.

#aws, #defend

A list of services and patterns that can be especially helpful in adopting a continuous compliance posture on AWS.

#explain, #kubernetes

Post explaining what admission controllers are, how do they work, and how to deploy them on Kubernetes.

#azure, #build

Behind the scenes view of some of the automated processes involved in setting up new environments and managing custom analytics for each customer, including details about our scripting and automated build and release pipelines, which are are deployed as infrastructure-as-code.

#announcement, #containers, #supply-chain

Notary v1, otherwise known as Docker Content Trust, was released at at a time when there was one primary registry: Docker Hub. A lot has changed since then, and now the alpha 1 release of the Notary v2 project has been announced.

Secret management toolchain from the Elastic team.

Documenting your Threat Models with HCL.

SimuLand is an open-source initiative by Microsoft to help security researchers deploy lab environments that reproduce well-known techniques used in real attack scenarios, actively test and verify effectiveness of related Microsoft 365 Defender, Azure Defender and Azure Sentinel detections, and extend threat research using telemetry and forensic artifacts generated after each simulation exercise.

kstatus provides tools for checking the status of Kubernetes resources. The primary use case is knowing when (or if) a given set of resources has been fully reconciled after an apply operation.

With user-defined roles you can grant users one or more custom roles that determine which operations they are authorized to perform. This release improves on DocumentDB's RBAC support which was previously limited to built-in roles.

How to deploy a solution to correlate specific AWS Security Hub findings from multiple AWS services that are related to a single AWS resource, which indicates an increased possibility that a security incident has happened.

This solution automates operational processes in an efficient, error-free, standardized and consistent way, to ensure that your AWS accounts are set up properly and with the necessary resources to meet your business and production needs.

How to use AWS Proton to handle multi-account deployments using one consistent and standardized continuous delivery pipeline.

Newcomers to Google Cloud will immediately notice the intentionality with which identity and environments were designed for the platform.

What global scope is for a Cloud Function, when to use, and what issues to look out for when used incorrectly.

Azure Policy provides the ability to place guardrails on Key Vault and its objects to ensure they are compliant with your organizations security recommendations and compliance regulations. It allows you to perform real time policy-based enforcement and on-demand compliance assessment of existing secrets in your Azure environment.

How logs from Log Analytics workspace can be migrated into long-term storage using Azure Data Explorer (ADX) to comply with retention standards as well as reduce costs.