Release Date: 21/01/2024 | Issue: 221
Know someone who'd find this useful? Forward this email
CloudSecList is a newsletter for busy professionals who want to keep up to date with the cloud security industry. Hand-curated by Marco Lancini.

This week's articles


An overview of Cloudflare's logging pipeline
Post going over what Cloudflare's logging pipeline looks like, how they achieve high availability, and how they meet their Service Level Objectives (SLOs) while shipping close to a million log lines per second.   #monitor


Tales from the cloud trenches: Amazon ECS is the new EC2 for crypto mining
Two attacks in an AWS environment that led to crypto mining and data exfiltration.   #attack   #aws


Azure Logs: Breaking Through the Cloud Cover
Azure Monitor Activity Logs can be difficult to interpret. This blog offers insights into these logs where you'll find an invaluable reference tool and guide designed to demystify Azure's logging complexities.   #azure   #monitor


Abusing Okta's SWA authentication method
Post demonstrating why Okta's SWA isn't the same or as secure as using SAML and OIDC authentication methods for SSO.   #explain   #saas


AWS Account Security Onboarding Mind Map
A succinct and structured mind map that could act like a checklist when onboarding new AWS Accounts to an existing AWS Organization.   #aws   #defend


Secure software supply chain for OCI Artifacts on Kubernetes
Post exploring the main types of attacks in the supply chain, as well as providing preventive and mitigation measures against them.   #attack   #defend   #supply-chain


AWS IAM Roles Anywhere with MacOS Keychain
Create a test Certificate Authority, configure AWS IAM Roles Anywhere and test access to AWS authenticating with a certificate in MacOS Keychain.   #aws   #build

Sponsor

K8s are great, but security is often a headache for engineers, architects, and DevOps to implement. To keep your Kubernetes-based workloads secure, no matter how large your application is or which type of infrastructure you use to host it โ€” on-premises, public cloud, or managed service. Get your copy of "The Complete Guide to Kubernetes Security" e-book today.

[Download today]

Tools


config-syncer
Config Syncer keeps ConfigMaps and Secrets synchronized across namespaces and/or clusters.


buildg
Interactive debugger for Dockerfile, with support for IDEs (VS Code, Emacs, Neovim, etc.).


spiffe-vault
Integrates Spiffe and Vault to have secretless authentication. You might also want to check out the companion blog post.


WhoAmISlack
Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs. You can also refer to the companion blog post.

From the cloud providers


#GCP   Google Cloud Incident Response Cheat Sheet
A visual lifeline designed to equip you with the crucial steps and resources needed to navigate a GCP security incident.

Thanks for reading!

If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! ๐Ÿ‘Œ

If you have questions, comments, or feedback, let me know on Twitter (@lancinimarco / @CloudSecList), or at feedback.cloudseclist.com!

Thanks,
Marco
Forward Forward
Twitter Tweet
Share Share

How did you like this issue of CloudSecList?

1       2       3       4       5

Archives View in browser Sponsorship
ยฉ 2019-present CloudSecList ยท Marco Lancini