Academy

A guide to protect against the 8KB WAF limitation in Google Cloud Armor

How to disable Internet wide access to the S3 bucket in AWS

How to disable Internet wide access to the S3 bucket using AWS CLI

How to disable the Database flag remote access for Cloud SQL on the SQL Server instance in Google Cloud via CLI

How to disable the Database flag remote access for Cloud SQL on the SQL Server instance in Google Cloud

How to manage cross account Google Cloud projects using service accounts

How to set a Non-limiting Value for the Database flag user connections for Cloud SQL on the SQL Server instance in Google Cloud via CLI

How to set a Non-limiting Value for the Database flag user connections for Cloud SQL on the SQL Server instance in Google Cloud

How to disable the Database flag cross db ownership chaining for Cloud SQL on the SQL Server instance via gcloud

How to disable the Database flag cross db ownership chaining for Cloud SQL on the SQL Server instance in Google Cloud

How to delete an IAM Role using AWS CLI

How to disable the Database flag user options for Cloud SQL on the SQL Server instance in Google Cloud

How to disable the Database flag user options for Cloud SQL on the SQL Server instance via gcloud

How to delete an IAM Role in AWS

How to remove an IAM User in AWS

How to remove an IAM User using AWS CLI

How to create an IAM Admin user in AWS

How to create an IAM Admin user using AWS CLI

How to remove the Access key of a user in AWS

How to remove the Access key of a user using AWS CLI

How to rotate the Access key of a user in AWS

How to rotate the Access key of a user using AWS CLI

How to deactivate the Access key of a user in AWS

How to deactivate the Access key of a user using AWS CLI

How to change the password of an IAM User in AWS

How to change the password of an IAM User using AWS CLI

How to enable MFA Delete on S3 bucket

How to enforce SSL/TLS for S3 requests using AWS

How to enforce SSL/TLS for S3 requests using AWS CLI

How to Force Delete Kubernetes Namespaces

How to conduct assessment with aws-foundations-cis-baseline tool

How to set up aws-foundations-cis-baseline tool for conducting CIS assessment

How to enable DNSSEC Signing in AWS Route53

How to enable DNSSEC Signing in Route53 using AWS CLI

How to set up GCP CIS 1.2.0 Benchmark Inspec Profile tool for conducting CIS assessment

Log4j (CVE-2021-44228): Detection, Exploitation and Mitigation

How to enable logging for elastic load balancer using AWS CLI

How to update AWS ELB HTTP Desync mitigation mode using AWS CLI

How to update AWS ELB HTTP Desync mitigation mode

How to enable MFA for an IAM User using AWS CLI

5 important security settings you need to review for your GKE clusters

Cross Account IAM enumeration via Lambda Resource Policies in AWS Cloud

How to enable logging for elastic load balancer

How to enable MFA for an IAM User in AWS

How to enforce 2FA for all Cloudflare account members

How to setup AWS CLI on Linux

How to enable public access block to restrict access in S3 using AWS CLI

How to enable public access block to restrict access in S3

How to update IAM password policy to require minimum password length of 14 or greater using AWS CLI

How to enable Uniform Bucket-level Access for Bucket in Google Cloud using CLI

How to enable Uniform Bucket-level Access for Bucket in Google Cloud

How to update IAM password policy to require minimum password length of 14 or greater

Hands-on with Kubernetes Goat - Introduction and Setup

Auditing Kubernetes with Kubeaudit - Conducting an Assessment

Auditing Kubernetes with Kubeaudit - Introduction and setup

How to enable 2FA on Cloudflare

Using Prowler for AWS assessment against CIS Foundations benchmark - Part 2 Conducting assessment

Enforce Organization wide 2FA in GitHub

How to add a new hostname or IP address to a Standalone Kubernetes API server

Using Prowler for AWS assessment against CIS Foundations benchmark - Part 1 Introduction and setup

How to update Base permissions setting in GitHub

Simple steps to set up a 2 Node Kubernetes Cluster using Kubeadm

5 Different ways to authenticate with AWS

How to update a user owned public EBS Snapshot to private using AWS CLI

How to update a user owned public EBS Snapshot to private

How to update public Repository to private in GitHub

How to use Steampipe to extract information for DigitalOcean

How to authenticate Steampipe with DigitalOcean

How to encrypt EBS Snapshot in AWS

How to encrypt EBS Snapshot using AWS CLI

Setting up Steampipe to perform cloud information gathering

Using a GitHub runner to perform Secrets Scanning using TruffleHog

Allowing non AWS workloads to access AWS services using AWS IAM Roles Anywhere

How to update IMDSv1 to more secure IMDSv2 on AWS

How to enable MFA for AWS Root user

How to remove AWS Root user access keys

Restricting access to Elasticsearch/Opensearch service

Enforce SSL/TLS for all incoming connections on CloudSQL Database Instances

How to enable Prevent Password Reuse policy in AWS

How to restrict access to public Cloud SQL database instances

Migrating an unencrypted RDS database to an encrypted one

How to restrict access to your publicly accessible RDS Instance

Restricting access to your RDS snapshots

How to Encrypt AWS EBS Volume

How to update AWS AMI permission from Public to Private

Allowing IAM users to access AWS EKS using kubectl

How to secure AWS S3 buckets with sensitive data

An introduction to Service Control Policies (SCPs) in AWS

Attacking Modern Environments Series: Attack Vectors on Terraform Environments

Cloud Security Orienteering

Scanning IPv6 with v6disc

Scanning IPv6 with Masscan

How to create a Virtual Machine on Google Cloud

Scanning IPv6 with RustScan

Identifying Toxic Combinations of Permissions in Your Cloud Infrastructure

Getting started with AWS ELB - Network Load Balancer

Getting started with AWS ELB - Application Load Balancer

Escalating privileges in Google Cloud, from app to cloud access

Scanning IPv6 with fi6s

How to create a new Pub/Sub Topic on Google Cloud

How to create a new Project in Google Cloud

Exploiting the O365 Duo 2FA Misconfiguration

How to transfer files between AWS S3 and AWS EC2

Configuring AWS Load Balancers to protect against HTTP Desync attacks

Scanning IPv6 with Nmap

How to set up EFS and use with multiple instances in different VPCs

Create, attach, and detach EBS volumes

How to set up an S3 bucket on AWS

AWS EBS vs S3 vs EFS: Differences & Use Cases

Detection Challenges in Cloud Connected Credential Abuse Attacks

Tools for Scanning IPv6 networks

Top 10 security best practices for your GitHub organisation account

Attack Vectors for APIs Using AWS API Gateway Lambda Authorizers

Shift Left Using Cloud: Implementing baseline security into your deployment lifecycle

Securing your GoDaddy Accounts

An Attacker's Approach to Pentesting IBM Cloud - fwd:cloudsec 2021

Hunting for AWS Exposed Resources

AWS cloud attack vectors and security controls

Security measures against SSRF attacks for AWS EC2 instances

Understanding common Google Cloud misconfigurations using GCP Goat

5 Things to Consider When Using AWS Elastic IP Addresses

Fixing the default insecure network connection option for RDS instances

Automate scanning of GitHub repos for secrets with GitHub Actions

How to securely configure an AWS EC2 instance

Top 10 security best practices for securing data in Amazon S3

Enumerating Users and their Access levels in 1Password

How to Patch the Pwnkit vulnerability (CVE-2021-4034) on the Cloud

A detailed guide on protecting against the 8KB AWS WAF limitation

5 ways to connect to your GCP VM instances using SSH

What is Multi-Factor Authentication in AWS?

How to perform an IAM Security Audit in AWS

Deploying web applications with GitHub Actions

How to perform a EC2 Vulnerability using Amazon Inspector

How to do a complete security audit of your Mongo Cloud account

How to get all public IP addresses in your AWS account

Getting started with AWS CloudTrail to monitor for security-sensitive APIs

Using log4jscanwin to identify Log4j vulnerabilities on Windows machines

DevSecOps - Scan GitHub org. repos for secrets

How to find vulnerable log4j instances across your AWS EC2 instances

Authentication Bypass in Apache Airflow - CVE-2020-17526 and AWS Cloud Platform compromise

IAM Bad: Privilege Escalation using Misconfigured Policies in AWS IAM (Webinar)

Rogue One: A Certified Kubernetes Administrator (CKA) Exam Story

Part 9 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Impact on the Cluster

Part 8 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Lateral Movement

Part 7 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Discovery

Part 6 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Credential Access

Part 5 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Defense Evasion

Part 4 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Escalation

Part 3 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Persistence

Part 2: Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Execution

Part 1: Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Initial Access

A Technical Analysis of the AWS CloudShell service

Impact of CVE-2020-15257 on your Docker and Kubernetes environments

Are you missing patching your clusters because of the new Docker hub limits?