DockerENT is an open source tool created by r0hi7. It is a runtime security tool which is used to scan for misconfigurations in docker containers and docker networks. Although, there are various security measures implemented during the build and deployment phase of containers, it is important that we scan and Read more…
I didn’t attend any AWS reInvent or reInforce conferences to date, however, I never missed any AWS reInvent Security Announcements !! Even this year I watched the reinvent sessions and keynotes while relaxing at home with some popcorn and drinks đ Major announcements for Identity, Security, and Governance during this Read more…
What is CloudTrail and how can it be disrupted? With AWS CloudTrail, you can monitor your AWS deployments in the cloud by getting a history of AWS API calls for your account, including API calls made via the AWS Management Console, the AWS SDKs, the command line tools, and higher-level AWS services. Read more…
Shifting strategy from DevOps to DevSecOps An introduction to the devsecops and the strategy for implementing DevSecOps culture is presented by Setu Parimi on 29th July 2018. It’s a session focussed on a high-level overview of devsecops which will be followed by intermediate and advanced level sessions in future. Agenda: -DevSecOps Introduction Read more…
Introduction CloudSploit is an AWS compliance, security and configuration monitoring scanner which is the first of its kind. It is an open source project designed to detect security risks in AWS. The CloudSploit Scans is built on NodeJS script which works on two phases. Collection and Scanning. After a successful run, Read more…
AWS Incident Response In this post, we will be talking about the ways one can set up and automate a set of functions that need to be carried out in a sequence in case an attack happens in AWS, Yes! AWS Incident response. Having the whole infrastructure on the cloud Read more…