This week's articles
almost_pwned
A sophisticated phishing attack targeting Google accounts, made possible by exploiting Google's official URL shortcut.
#attack
#gsuite
Best practices for key derivation
This post covers best practices for using KDFs, including specialized scenarios that require careful treatment of key derivation to achieve the desired security properties.
#defend
#strategy
AWS EKS Access Management & Permissions
This post explores the following AWS EKS technologies, and applies them to the context of a real scenario: aws-auth (2018), IRSA (IAM Roles for Service Accounts) (2019), EKS Pod Identities (2023), and EKS Cluster Access Management (2023).
#aws
#iam
#kubernetes
Introduction to Detection Engineering with Sigma
This post introduces detection engineering and Sigma rules. It covers Sigma's purpose, syntax, and benefits for threat detection across diverse log sources and SIEM platforms.
#explain
#monitor
Phishing for Refresh Tokens
Leveraging AiTM and the OAuth 2.0 authorization code flow to steal access and refresh tokens.
#attack
#saas
|