Learn Cloud Security
Page 10 of 13
AWS EBS vs S3 vs EFS: Differences & Use Cases
EBS, S3, and EFS are three popular storage services provided by AWS. In this article, we take a look at each of these services and their use cases.
Detection Challenges in Cloud Connected Credential Abuse Attacks
Blurring of traditional perimeters with the emergence of cloud has led to rise of new threats. This talk by Rod Soto takes us through some of the attack scenarios and how defenders can implement detection to address these new threats.
Tools for Scanning IPv6 networks
IPv6 networking is increasingly being adopted by businesses and organisations around the world. Though there are many popular scanners for IPv4, here’s a list that covers some of the tools that can be used to scan IPv6 networks.
Top 10 security best practices for your GitHub organisation account
A list of top 10 security best practices to improve the security of your GitHub organisation.
Attack Vectors for APIs Using AWS API Gateway Lambda Authorizers
On AWS, Lambda Authorizers are frequently used with API Gateway, however, one must be careful when working with the policy documents for Lambda Authorizers. This tech talk by Alexandre & Leonardo takes you through interesting examples to showcase the attack vectors for APIs using the AWS API Gateway Lambda Authorizers.
Shift Left Using Cloud: Implementing baseline security into your deployment lifecycle
Implementing the principle of Shift Left in terms of security into your deployment lifecycle can help in finding and fixing vulnerabilities in the early stages making it more efficient to address security issues.
Securing your GoDaddy Accounts
Domain and website are an important part of an organisations’ identity and brand on the Internet, hence it is important to secure your accounts with your domain registrar. In this article, we discuss some of the ways to protect your accounts on one of the most popular domain registrars - GoDaddy.
An Attacker's Approach to Pentesting IBM Cloud - fwd:cloudsec 2021
A walkthrough of the slides presented during the fwd:cloudsec 2021 conference with details of findings and observations across different resources within the IBM cloud platform.
Hunting for AWS Exposed Resources
Misconfigured cloud services exposed to the internet is a very common security issue. This video talks about how exposed AWS resources can be discovered and some interesting insights from the speaker Felipe Pr0teus indicating the importance of securing your cloud resources.
AWS cloud attack vectors and security controls
An insightful presentation by Kavisha Seth on understanding and identifying different attack vectors on AWS and learning about various security controls that can be implemented.
Security measures against SSRF attacks for AWS EC2 instances
In this article you will learn about some preemptive security measures that can be implemented for AWS EC2 instances against SSRF attacks.
Understanding common Google Cloud misconfigurations using GCP Goat
A hands-on introduction and walkthrough of GCP Goat - an intentionally vulnerable GCP environment to help understand common misconfigurations in Google Cloud and how attackers can take advantage of it.