This week's articles
An Adventure in Google Cloud threat detection
Post highlighting some common threats and exploits in Google Cloud, with the aim to share information to create detections that will catch the early signs of attacker activity.
#gcp
#monitor
Azure Threat Research Matrix
The purpose of the Azure Threat Research Matrix (ATRM) is to conceptualize the known tactics, techniques, and procedures (TTP) that adversaries may use against the Azure platform.
#attack
#azure
#defend
Securing AWS Step Functions
Some macro-areas to consider when securing step functions: IAM roles and policies, data security, logging and monitoring, and abuse.
#aws
#defend
Understanding S3 Block Public Access
What does "public" actually mean? And how does S3 Block Public Access work? This post answers these questions hoping to shed some light on how S3 Block Public Access can help protect S3 buckets from public access.
#aws
#explain
Using Nix with Dockerfiles
The article discusses the benefits of using Nix, a functional package manager, with Dockerfiles to create reproducible and efficient container images. Nix allows for easy management of dependencies and versioning, while Dockerfiles provide a portable and scalable way to distribute the images.
#build
#containers
When MFA becomes SFA
A particular case where possession of an AWS access key/secret key alone was equivalent to possession of those keys and a previously configured MFA.
#attack
#aws
|