Step-by-step guides about
Cloud Security

How to perform a EC2 Vulnerability using Amazon Inspector

A guide on how to perform an EC2 Vulnerability Scan using Amazon Inspector with the console and the CLI.
Jan 17, 2022 ~ 4 min read
aws
ec2vulnerability
cloudsecurity
amazoninspector
How to get all public IP addresses in your AWS account

The knowledge of all public IP addresses across different services within AWS is a good way to get started with understanding what the attack footprint of an organisation looks like. This article describes fetching this information using both, the web console and the CLI.
Jan 7, 2022 ~ 11 min read
aws
cloudsecurity
publicip
Using log4jscanwin to identify Log4j vulnerabilities on Windows machines

A step-by-step guide on how to identify Log4j vulnerabilities on Windows machines using log4jscanwin
Dec 29, 2021 ~ 7 min read
cloudsecurity
log4j
How to find vulnerable log4j instances across your AWS EC2 instances

A guide to help you discover vulnerable Log4j packages across multiple Linux machines using scripting and the AWS SSM to run commands remotely.
Dec 3, 2021 ~ 7 min read
aws
cloudsecurity
log4j
ec2instances
IAM Bad: Privilege Escalation using Misconfigured Policies in AWS IAM (Webinar)

A walkthrough of the slides covered as part of our Star Wars Day special webinar on IAM policy misconfigurations that can lead to privilege escalations and a takeover of the target AWS account.
May 6, 2021 ~ 14 min read
aws
cloudsecurity
iam
Rogue One: A Certified Kubernetes Administrator (CKA) Exam Story

My journey and experience with how I approached the CKA exam, failed it, learnt from my failure and passed it in my second attempt. Tips and Tricks included!
Mar 3, 2021 ~ 15 min read
kubernetes
cka

Newer posts

Older posts