A summary of Grafana Labs' security manifesto.

Find information about public cloud provider regional services availability, from AWS, Azure, Google Cloud, CloudFlare and Fastly. Get stats of services, regions and edge locations.

A recap of security related announcements at re:Invent 2021.

The five pillars of the NIST CSF help create a layered security approach to the fight against ransomware.

Another vulnerability discovered by the Wiz Research Team, where the Azure App Service exposed hundreds of source code repositories.

How to escalate privileges in Azure from low-privileged users to managed-identities.

Some ways to securely run an app locally with the exact same context as on Google Cloud.

Example CloudWatch rule and Lambda function to send an email via SES whenever an IAM user is created.

SysFlow is a compact open telemetry format that records workload behaviors by connecting event and flow representations of process control flows, file interactions, and network communications. The resulting abstraction encodes a graph structure that enables provenance reasoning on host and container environments, and fast retrieval of security-relevant information.

A simple HTTP proxy that fogs over naughty URLs.

An admission controller service and kubectl plugin to handle container drift in K8s clusters. You can also refer to the companion blog post.

The best way to tail AWS CloudWatch Logs from your terminal.

A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.

A scalable, serverless, and automated approach to discover public IP addresses assigned to resources in a single or multi-account environment in AWS, using AWS Config.

How to use services such as AWS Security Hub and Falco, a Cloud Native Computing Foundation project, to build a continuous runtime security monitoring solution.