Category: academy

Authentication Bypass in Apache Airflow - CVE-2020-17526 and AWS Cloud Platform compromise

An authentication bypass within Apache Airflow allowed an attacker to login as any user in the Airflow system. Post exploitation within the app, led to a full cloud account compromise on AWS.
Jun 22, 2021 ~ 7 min read
mitreatta&ck
cloudsecurity
kubernetes
A Technical Analysis of the AWS CloudShell service

A quick technical analysis of the AWS CloudShell service that provides a pre-configured shell on the cloud with access to your AWS account.
Dec 21, 2020 ~ 10 min read
aws
cloudsecurity
cloudshell
CVE-2020-15257 What is it and how does it impact your Docker and Kubernetes environments?

A new vulnerability named CVE-2020-15257 has been discovered in the networking namespace. Our blog covers the details.
Dec 1, 2020 ~ 7 min read
kubernetes
docker
cloudsecurity
How to enable MFA for AWS Root user

Multi factor authentication (MFA) provides an additional layer of security and must be enabled whenever possible. In this article we go through the detailed steps to enable MFA for an AWS account Root user.
Oct 3, 2022 ~ 2 min read
aws
cloudsecurity
rootuser
mfa
How to get all public IP addresses in your AWS account

The knowledge of all public IP addresses across different services within AWS is a good way to get started with understanding what the attack footprint of an organisation looks like. This article describes fetching this information using both, the web console and the CLI.
Jan 7, 2022 ~ 11 min read
aws
cloudsecurity
publicip
How to find vulnerable log4j instances across your AWS EC2 instances

A guide to help you discover vulnerable Log4j packages across multiple Linux machines using scripting and the AWS SSM to run commands remotely.
Dec 3, 2021 ~ 7 min read
aws
cloudsecurity
log4j
ec2instances

Newer posts

Older posts