How we can build an eBPF-based service mesh in the kernel to replace the complex sidecar model.

CloudSploit's remediation guides are intended to be an open-source resource for improving cloud security. Many cloud IaaS providers like AWS, Azure, and Google Cloud have a shared responsibility model. They provide the physical and architectural security, along with tools to properly secure the services they offer, but it is up to the user to configure those settings properly.

How to get started with Falco to overcome the challenges of implementing runtime security for cloud-native workloads.

The process of granting the least privileges required to execute "aws s3 ls" and "terraform apply" by a CI/CD runner.

How Istio can be configured to manage the OpenID Connect (OIDC) authentication flow for applications running within the mesh to allow both authentication and authorisation decisions to be offloaded to Istio.

Post describing a typical journey towards GitOps with Flux.

Deep dive into the different types of evasion and bypasses an adversary will use during an attack chain.

Command line utility to facilitate terraforming your existing Cloudflare resources.

CDK constructs to use OpenID Connect for authenticating your Github Action workflow with AWS IAM.

Automated diagrams of CDK provisioned infrastructure.

MagTape is a Policy-as-Code tool for Kubernetes that allows for evaluating Kubernetes resources against a set of defined policies to inform and enforce best practice configurations.

A practical approach that you can use to detect anomalous behaviors within AWS workloads by using behavioral analysis techniques that can be used to augment existing threat detection solutions.

Post providing guidance to help customers who are responding to the recently disclosed log4j vulnerability.

How you can use modern cloud technologies to build a scalable penetration testing platform, with no infrastructure to manage.

Three GCP services to help you to investigate Google Cloud Service Account usage and mitigate against unintended consequences during key rotation.

Three real GCP controls framework technical examples for regulated FSI Google Cloud customers to help maintain security and compliance postures.

Ratify is a container image and artifacts verification framework to approve deployments in Kubernetes. Ratify can use and coordinate any number of custom verifiers based on policy including signatures, SBOMs, and scan results.