Post discussing one of the features of AWS API Gateway, called lambda authorizers, and how the official AWS documentation might have led developers into using it insecurely.

Architecture and implications of an automated process aiming to backup a Github account, relying on ECS Fargate and S3 Glacier. Disclaimer: I did write this post.

Yor can auto-tag infrastructure with metadata to categorize resources by purpose, owner, team, environment, and more.

A solution which gives platform users a succinct view about which Gatekeeper constraints are violated by using Prometheus & Grafana.

With Dev Environments developers can now set up repeatable and reproducible development environments by keeping the environment details versioned in their Software Configuration Management along with their code.

A new Terraform provider which allows you to manage users, groups, and domains in your Google Workspace (formerly G Suite).

In Kubernetes 1.22, the BETA versions of the CustomResourceDefinition, MutatingWebhookConfiguration, and ValidatingWebhookConfiguration APIs will be removed.

How to install Cilium with kube-proxy replacement in EKS with managed node groups using eksctl.

Post covering some of the instance options in EC2, installation of the needed Linux packages, the basic setup of Hashcat, running Hashcat, and finally monitoring and benchmarks of an EC2 instance.

The Google Open Source Security team, Go team, and the broader open-source community have been developing a simple vulnerability interchange schema for describing vulnerabilities that's designed from the beginning for open-source ecosystems.

RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services.

Hunt unused resources in Kubernetes.

A controller to override image sources in the event that an image cannot be pulled.

kubewatch is a Kubernetes watcher that publishes notifications to available collaboration hubs/notification channels. Run it in your k8s cluster, and you will get event notifications through webhooks.

A tool to help apply changes across many GitHub repositories simultaneously.

How to use AWS WAF's custom responses and request header insertion to improve the security posture of your applications.

Best practices to help you maximize the performance of your workload and avoid common configuration pitfalls in the following areas: Administration, Configuration, Managing PKI root keys, Performance, and Error handling.

How to use ACM Private CA with AWS CloudHSM to operate a hybrid public key infrastructure (PKI) in which the root CA is in CloudHSM, and the subordinate CAs are in ACM Private CA.

The security foundations blueprint identifies core security decisions and guides you with opinionated best practices for deploying a secured Google Cloud environment.

Post sharing guidance on how organizations can increase their resilience to ransomware and how some Cloud products and services can help.