Category: academy

An interesting talk on understanding the O365 Duo 2FA misconfiguration and how it can be detected and remediated.

HTTP Desync attacks are a category of attacks on a system of proxies and load balancers when multiple devices in the chain parse parts of the HTTP request differently, resulting in tampering of legitimate HTTP sessions and bypassing application level security. AWS offers protection against these attacks in their Load Balancer service that prevents exploitation.

This academy article provides hands-on guidance on how you can create, attach, and detach EBS volumes to your EC2 instances on AWS.

EBS, S3, and EFS are three popular storage services provided by AWS. In this article, we take a look at each of these services and their use cases.

Blurring of traditional perimeters with the emergence of cloud has led to rise of new threats. This talk by Rod Soto takes us through some of the attack scenarios and how defenders can implement detection to address these new threats.

IPv6 networking is increasingly being adopted by businesses and organisations around the world. Though there are many popular scanners for IPv4, here’s a list that covers some of the tools that can be used to scan IPv6 networks.