This week's articles
Fighting API Abusers
Interesting post covering the approach the team behind the Selfie2Anime service took to help prevent a bad actor from abusing their APIs.
AWS Digital Forensics Automation at Goldman Sachs
Goldman Sachs has automated an event-driven cloud response solution that uses AWS native services to successfully collect disk and memory evidence from Amazon EC2 instances. The solution uses AWS security services Amazon GuardDuty and AWS Security Hub. It also leverages a variety of services such as AWS Lambda, AWS Step Functions, and AWS Systems Manager (SSM). This Tech Talk provides an overview of Goldman Sachs' environment and a deep dive on how they built automation for digital forensics using AWS native services.
Can We Have "Detection as Code"?
Blog describing the idea of "detection as code", a more systematic, flexible and comprehensive approach to threat detection that is somewhat inspired by software development.
An introduction to Kubespray
Introductory post for Kubespray, a tool which uses Ansible for deploying multi-node Kubernetes clusters.