This week's articles
Announcing OpenCSPM - An Open-Source Cloud Security Posture Management and Workflow Platform
#aws, #gcp, #defend, #announcement
OpenCSPM is an open-source platform developed by Darkbit that aims to make continuous cloud security posture assessments of cloud environments a practical reality for security and compliance teams alike. It offers a unique approach to manage the firehose of security and compliance check results that even modest AWS and GCP environments can surface, and its control definitions allow for simple yet powerful levels of introspection of its graph data model.
Blind Spots in the Cloud
#aws, #gcp, #defend
High-level post reviewing logging and visibility options offered by AWS and GCP, and discussing blind spots and how to eliminate them.
Announcing HashiCorp Vault 1.6
#vault, #announcement
This release features Integrated Storage enhancements, a new Key Management Secrets Engine, Transform Secrets Engine updates, and more.
How to monitor coreDNS
#kubernetes, #defend
How to monitor coreDNS: how to get metrics out of it, and what to look for.
CloudGoat ECS_EFS_Attack Walkthrough
#aws, #attack
Walkthrough covering the CloudGoat attack simulation "ecs_efs_attack", teaching how to pivot through AWS Elastic Container Service and gain access to AWS Elastic File Share.
|
|
Tools
cmd-tutorial
Tutorial walking through provisioning some VMs on GCP so to kick the tires on Cmd, an utility to track and control users in production.
|
|
From the cloud providers
Introducing AWS Gateway Load Balancer
AWS announced the general availability of AWS Gateway Load Balancer (GWLB), a service that makes it easy and cost-effective to deploy, scale and manage the availability of third-party virtual appliances such as firewalls, intrusion detection and prevention systems and deep packet inspection systems in the cloud.
What is AWS Nitro Enclaves?
Get started with AWS Nitro Enclaves. From EC2 instances, you can create isolated execution environments that are separate, hardened VMs.
AWS Lambda now makes it easier to send logs to custom destinations
You can now send logs from AWS Lambda functions directly to a destination of your choice by using AWS Lambda Extensions. It is currently possible to use extensions that send logs to the following providers: Datadog, New Relic, Sumo Logic, Honeycomb, Lumigo, and Coralogix.
|
|
Thanks for reading!
|
If you found this newsletter helpful, I'd really appreciate if you could forward it to your friends and colleagues! 👌 If you have questions, comments, or feedback, let me know on Twitter ( @lancinimarco / @CloudSecList), or at feedback.cloudseclist.com! Thanks, Marco
|
|
|