List: Cloud Security | Curated by Dan Sherman

Apr 27, 2024
33 stories
Cloud SecurityDecSecOps & Cloud Security for  AWS, Azure & GCP
In
Anton on Security
by
Anton Chuvakin
Baby ASO: A Minimal Viable Transformation for Your SOCOne pattern I spotted after looking at the evolution of IT and security organizations over the years, including my time at Gartner is…
Apr 19, 2024
Apr 19, 2024
In
MITRE ATT&CK®
by
Amy L. Robertson
ATT&CK 2024 RoadmapEnhancing usability, expanding scope, optimizing defenses
Apr 18, 2024
1
Apr 18, 2024
1
In
Google Cloud - Community
by
Ammett W
Preparing for the Google Cloud Professional Cloud Security Engineer ExamSecurity is important to every organization. If you’re a cloud security professional, certification might be the right challenge for you.
Jul 11, 2022
4
Jul 11, 2022
4
Darek Barecki
k8spacket is fully based on eBPF right nowk8spacket uses eBPF tracepoint and Traffic Control qdisc filters to collect information about TCP traffic and TLS connection metadata.
Mar 9, 2024
1
Mar 9, 2024
1
In
Gruntwork
by
Yevgeniy Brikman
Introducing BoilerplateAn open source, cross-platform project generator / scaffolding tool
Mar 5, 2024
2
Mar 5, 2024
2
In
System Weakness
by
David Merian
Hack eBPF, Own LinuxThis feature for Linux kernels, eBPF (Extended Berkeley Packet Filter) is “technology that makes programming the kernel flexible, safe, and…
Sep 5, 2023
Sep 5, 2023
Sena Yakut
AWS re:Invent 2023: Security Session Notes 📝AWS re:Invent 2023 is completed in Las Vegas. I’ve watched some security-focused sessions and announcements online and I want to share my…
Dec 2, 2023
1
Dec 2, 2023
1
Leslie Alldridge
Use Terraform Test in v1.6.0 with example (No providers required)What to expect: We will be writing three simple unit tests to get you comfortable with the new files and testing flow in Terraform. No AWS…
Oct 6, 2023
1
Oct 6, 2023
1
In
ITNEXT
by
Krzysztof Pranczk
A Practical Approach to SBOM in CI/CD Part II — Deploying Dependency-TrackThe article presents how to store and analyse Software Bill of Materials with OWASP Dependency-Track to identify security vulnerabilities…
Sep 26, 2023
1
Sep 26, 2023
1
In
GitGuardian
by
Sonya Moisset
GitHub Security 101: Best Practices for Securing your RepositoryDevSecOps expert and GitHub Star Sonya Moisset shared with us her tips to improve your open-source repository’s security in a few simple…
Sep 20, 2022
Sep 20, 2022
In
Forto Tech
by
Oded Ben-Ozer
Automated Versioning of Terraform Modules with GitHub Actions, SemVer StyleProviding our Terraform modules monorepo with some release engineering love
Nov 17, 2021
3
Nov 17, 2021
3
In
Miro Engineering
by
Peter Brindisi
How Miro leverages Open Policy Agent to implement authorization-as-a-serviceLearn about Miro’s challenges with authorization and how Open Policy Agent has helped Miro build a dedicated service for app authorization.
May 31, 2023
2
May 31, 2023
2
Muhammad Saad Khan
Pre-deployment Policy Checks for Terraform using OPA (Open Policy Agent)To achieve cloud compliance and improve security, many organizations depended on policies and procedures. Review processes has been…
Jun 16, 2021
1
Jun 16, 2021
1
In
boostsecurity
by
François Proulx
Erosion of Trust: Unmasking Supply Chain Vulnerabilities in the Terraform Registry
Jun 19, 2023
Jun 19, 2023
BRK0018
Implement Cloud Armor Security Policy/s using TerraformGoogle Cloud Armor helps you protect your Google Cloud deployments from multiple types of threats including DDoS [Distributed…
Jan 19, 2022
3
Jan 19, 2022
3
In
The SADA Engineering Blog
by
Robert Teller
Using a host project to simplify your Google Cloud networkBy Robert Teller, SADA Sr. Solutions Architect
Jul 20, 2022
Jul 20, 2022
In
Google Cloud - Community
by
Harshal Rane
Centralised GCP Loadbalancer with Cross-project backend servicesGoogle Cloud Platform recently released the Centralised Loadbalancers feature in GA. Using this new service now it’s possible to have…
Oct 25, 2022
1
Oct 25, 2022
1
In
better appsec
by
James Chiappetta
Building a Practical Secure Code Review ProcessA guide to structuring a secure code review process and why it’s important for every Application & Cloud Security team to have one.
Apr 26, 2023
1
Apr 26, 2023
1
Madhav Bhatt
gcpHound : A Swiss Army Knife Offensive Toolkit for Google Cloud Platform (GCP)In this article, we will talk about a new tool written by me alongside Brad Richardson called “gcpHound” as well as some of the…
Sep 7, 2021
Sep 7, 2021
Chris Martin (@thatsiemguy)
Enrichment in Chronicle SIEMChronicle SIEM now shows you enriched versus unenriched UDM fields, so you can quickly and easily see which fields have been enriched.
Apr 5, 2023
Apr 5, 2023