This week's articles
Tetragone: A Lesson in Security Fundamentals
#attack, #containers
A journey through a bypass of a new eBPF-based observability and mitigation tool named Tetragon, developed in the two hours after the tool was first set up, as a hopefully instructive lesson on the importance of security fundamentals.
Automating Azure Abuse Research
#attack, #azure
A step-by-step process for automating Azure abuse research, with examples for Azure Virtual Machines and their Managed Identities.
A Review of the AWS Security Model
#aws, #defend, #strategy
AWS have released their own security maturity model, but does it stack up against what we're seeing in real-world attacks and in the approaches being suggested by the rest of the AWS security community?
rego-style-guide
A much needed style guide providing a collection of recommendations and best practices for authoring Rego.
Terraform Best Practices for Better Infrastructure Management
#build, #iac, #terraform
Post which explores different best practices for Terraform and Infrastructure as Code, analyzes various options for handling and structuring Terraform projects, and shows how adopting helper tools could make our life easier.
|
|
Tools
rbac-police
Evaluate the RBAC permissions of serviceaccounts, pods and nodes in Kubernetes clusters through policies written in Rego.
kubeaudit
kubeaudit helps you audit your Kubernetes clusters against common security controls.
|
|
Sponsor
Control Your Identities to Secure Your Cloud Companies are struggling to scale their cloud securely, in large part due to the complexities of identity management. In fact, nearly 80% of decision-makers surveyed note that the increase in cloud migrations is requiring a new set of security solutions to tackle this problem. Join us on June 2, 2022 at 1:00 PM ET for a discussion about a new Forrester study commissioned by Sonrai and AWS, “Identity Controls & Cloud Scalability: Closing the Gap to Secure Your Cloud.” This event is hosted by Sandy Bird, CTO and cofounder of Sonrai Security, and features guests from AWS and Forrester. Register Now
|
|
|
Thanks for reading!
|
If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! 👌 If you have questions, comments, or feedback, let me know on Twitter ( @lancinimarco / @CloudSecList), or at feedback.cloudseclist.com! Thanks, Marco
|
|
|