This week's articles
Identity Providers for RedTeamers
Post looking at effective techniques for operating against Identity Providers during a RedTeam post-exploitation phase.
#attack
#iam
cert-manager completes CNCF-sponsored security audit!
A total of 8 issues were raised as part of the audit, of which 5 were low severity, 2 were moderate severity and 1 was informational. All issues have been resolved as of cert-manager v1.12.8, v1.13.4 and v1.14.3.
#defend
How to stay safe from repo-jacking
Repo-jacking is a specific type of supply chain attack. This blog post explains what it is, what the risk is, and what you can do to stay safe.
#ci/cd
#defend
|