This week's articles
Enforcing Device AuthN & Compliance at Pinterest
#defend, #strategy
How Pinterest enforced the use of managed and compliant devices in their Okta authentication flow, using a passwordless implementation, so that access to their tools always requires a healthy Pinterest device.
A Guide to Running Sigstore Locally
#build, #supply-chain
How to stand up a Sigstore deployment on your own infrastructure on Kubernetes so that you will be able to take advantage of the benefits and the assurance of not exposing sensitive resources.
|
|
Tools
dynamodb-shell
Ddbsh is a simple CLI for DynamoDB modeled on isql, and the MySQL CLIs.
AWS Cryptographic Computing for Clean Rooms (C3R)
The Cryptographic Computing for Clean Rooms (C3R) encryption client and SDK provide client-side tooling which allows users to participate in AWS Clean Rooms collaborations leveraging cryptographic computing by pre- and post-processing data.
eks-creation-engine
The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program that facilitates the creation and enablement of secure EKS Clusters.
|
|
Sponsor
AlphaSOC: Free Adversary Simulation Utility Want to test your threat detection stack? AlphaSOC has published Network Flight Simulator (flightsim) which is a free, open source utility that synthesizes malicious traffic patterns including C2 beacons, DGA traffic, DNS tunneling, SSH exfiltration, network scanning, and cryptomining. Use flightsim to instantly uncover detection blindspots and improve your SIEM / SOAR configuration. Network Flight Simulator on GitHub
|
|
|
Thanks for reading!
|
If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! π If you have questions, comments, or feedback, let me know on Twitter ( @lancinimarco / @CloudSecList), or at feedback.cloudseclist.com! Thanks, Marco
|
|
|