Post-mortem of a real world OSS supply chain attack, where GitHub uncovered malware designed to enumerate and backdoor NetBeans projects, and which used the build process and its resulting artifacts to spread itself.

HashiCorp announced the alpha release of a new version of the Kubernetes Provider for Terraform. The kubernetes-alpha provider lets you package, deploy, and manage all Kubernetes resources, including Custom Resource Definitions, using HashiCorp Configuration Language (HCL).

Very detailed post describing how a compromised Global Administrator (O365) account could compromise any/all Azure VMs (including hosted Domain Controllers), with minimal/no logging.

The AWS SDK has a feature called Client Side Monitoring (CSM) that can be enabled by setting an environment variable which causes all AWS API calls to be recorded. This is mostly undocumented outside of the SDK source code.

A step-by-step walkthrough of CloudGoat 2.0 scenarios.

Gatekeeper is a validating admission controller which makes use of Open Policy Agent (OPA) to allow Kubernetes administrators to implement policies for ensuring compliance and best practices in their cluster.

Building on the previous article, Gatekeeper is now seen as a potential alternative to Pod Security Policy. This article shows how Open Policy Agent can implement Pod Security Policies.

In this hands-on article, you will learn how to setup Vault with Kubernetes.

Kubectl plugin to interactively proxy Kubernetes Services with ease.

container-diff is a tool for analyzing and comparing (diffing) container images.

docker-slim minifies container images by analysing what is actually used at runtime, and throwing away the rest. Not a replacement for scratch builds entirely, but a useful stepping-stone towards them which also reduces the attack surface of your container.

Kubernetes Janitor cleans up (deletes) Kubernetes resources after a configured TTL.

By hooking into the pre-push hook provided by Git, Talisman validates the outgoing changeset for things that look suspicious - such as authorization tokens and private keys.

How to configure AWS Chatbot to send findings from AWS Security Hub to Slack. Security Hub gives you a comprehensive view of your security high-priority alerts and security posture across your AWS accounts.

It is now possible to use Attribute-based access control (ABAC) with EC2 Instance Connect (EIC) to define SSH access permissions based on attributes.

Ephemeral storage for AWS Fargate tasks now uses server side encryption for easier PCI DSS and HIPAA compliance.

Whitepaper to learn how you can align your company's security strategy in AWS to the framework's 5 pillars - Identify, Protect, Detect, Respond & Recover.

IAP Desktop is a Windows application that allows you to manage multiple Remote Desktop Protocol (RDP) connections to Windows VM instances running on Google Cloud.

Google just announced a new bug bounty on a hardened kubernetes cluster.

How to configure customer-managed keys with Azure Key Vault for Azure CosmosDB.