Step-by-step guides about
Cloud Security

Attacking Modern Environments Series: Attack Vectors on Terraform Environments

Terraform is a popular IAC orchestrator that is widely used for standardising and executing infrastructure deployments, but since it has privileges on the cloud platforms, Mazin Ahmed shares why it is important to understand which attack vectors exist, and what can be done about them.
Jul 15, 2022 ~ 2 min read
cloudvillage
cloudsecurity
Cloud Security Orienteering

A presentation on how one can quickly get familiar with new cloud environments and accelerate the process of identifying security issues and addressing them.
Jul 15, 2022 ~ 2 min read
cloudvillage
cloudsecurity
Getting started with AWS ELB - Network Load Balancer

This article is a quick introduction to network load balancing and how to create a Network Load Balancer on AWS.
Jun 21, 2022 ~ 3 min read
aws
cloudsecurity
networkloadbalancer
Getting started with AWS ELB - Application Load Balancer

Elastic Load Balancing (ELB) automatically distributes incoming application traffic across multiple targets and virtual appliances in one or more Availability Zones (AZs). In this article we will take a look at how to create an Application Load Balancer on AWS.
Jun 17, 2022 ~ 3 min read
aws
cloudsecurity
applicationloadbalancer
Escalating privileges in Google Cloud, from app to cloud access

A short blogpost that shows an exploitation scenario where an attacker, who has managed to gain SSRF or code execution capabilities, can leak tokens and escape to the Google Cloud platform.
Jun 13, 2022 ~ 5 min read
cloudsecurity
gcp
kloudle
Exploiting the O365 Duo 2FA Misconfiguration

An interesting talk on understanding the O365 Duo 2FA misconfiguration and how it can be detected and remediated.
May 26, 2022 ~ 2 min read
cloudvillage
cloudsecurity

Newer posts

Older posts