This week's articles
Automated GDrive Backups with ECS and S3
#aws, #build
Architecture and implications of an automated process aiming to backup a GDrive account, relying on ECS Fargate and S3 Glacier. Disclaimer: I did write this post.
Revisiting Macie
#aws, #explain
Macie has come a long way from the initial release in 2018. It now supports Delegated Admin like GuardDuty, it has a proper Boto3 API, and there was even an 80% price reduction last year. You can also check the companion repository.
SimuLand: Understand adversary tradecraft and improve detection strategies
#azure, #attack
SimuLand is an open-source initiative by Microsoft to help security researchers deploy lab environments that reproduce well-known techniques used in real attack scenarios, actively test and verify the effectiveness of related Microsoft 365 Defender, Azure Defender, and Azure Sentinel detections, and extend threat research using telemetry and forensic artifacts generated after each simulation exercise. You can also check out the companion repository.
|