This week's articles
Passkeys for Normal People
Post looking at how to set them up, how to use them on websites and in mobile apps, and talk about what some of their shortcomings are.
#explain
S3 bucket name squatting
Post sharing findings on four AWS services - Amazon Athena, AWS Elastic Beanstalk, AWS CodePipeline, AWS Config - and the implications of bucket name squatting.
#attack
#aws
Augmented LLM for Threat Hunting
An MCP implementation to augment Claude LLM for interacting with Elasticsearch to assist with threat identification.
#elastic
#monitor
Kubernetes v1.33: From Secrets to Service Accounts: Kubernetes Image Pulls Evolved
Kubernetes is introducing Service Account Token Integration for Kubelet Credential Providers, now available in alpha. This enhancement allows credential providers to use pod-specific service account tokens to obtain registry credentials, which kubelet can then use for image pulls, eliminating the need for long-lived image pull secrets.
#explain
#kubernetes
|