This week's articles
Solving common problems with Kubernetes
#explain, #kubernetes
This article is aimed at engineers who need to deploy their code using Kubernetes, but have no idea what Kubernetes is or how it works.
Three Kubernetes events worth investigating
#kubernetes, #monitor
Whether you run Kubernetes yourself or use a managed provider like GKE, EKS, or AKS, certain events are worth investigating: successful authorisation of an anonymous request, default service account bound to privileged cluster role, and Pod created with an unusual image.
AWS Security Groups Guide
#aws, #defend, #explain
Knowing how security groups & NACLs work together is extremely important for controlling network traffic to your instances & subnets.
Sigstore project announces general availability and v1.0 releases
#announcement, #supply-chain
The Sigstore community announced the general availability of their free, community-operated certificate authority and transparency log services. In addition, two of Sigstore's foundational projects, Fulcio and Rekor, published v1.0 releases denoting a commitment to API stability.
Trivy Now Supports NSA Kubernetes Compliance
#announcement, #defend, #kubernetes
Trivy, now supporting NSA compliance guideline, lets you outline reports to curate hundreds of checks for different components and configurations.
|
|
Tools
ggcanary
A simple Terraform configuration to create and manage GitGuardian Canary Tokens.
cdebug
A handy way to troubleshoot containers lacking a shell and/or debugging tools (e.g., scratch, slim, or distroless).
cmd.ms
Are you tired of clicking around in Microsoft portals to get to a blade?
aws-list-resources
Use the AWS Cloud Control API to list resources that are present in a given AWS account and region(s).
|
|
Sponsor CloudSecList
If you want to get your product or job ad in front of thousands of security professionals, ranging from engineers to CISOs and VCs, at companies ranging from small start-ups to Fortune500 and FAANG, you can reach out at π¨ [email protected] π¨
|
|
|
From the cloud providers
Announcing updates to the AWS Well-Architected Framework
Amazon announced the availability of improved AWS Well-Architected Framework content. In this update, they changed all six pillars of the framework: Operational Excellence, Security, Reliability, Performance Efficiency, Cost Optimization, and Sustainability.
|
|
Thanks for reading!
|
If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! π If you have questions, comments, or feedback, let me know on Twitter ( @lancinimarco / @CloudSecList), or at feedback.cloudseclist.com! Thanks, Marco
|
|
|