Introduction Have you ever wondered how to scale your Google Cloud Platform (GCP) network while keeping it secure and efficient? If so, you're in the right place! In this blog post, we're going to explore the fascinating world of the GCP Hub and Spoke architecture and...
Introduction In the past, I have struggled to create custom findings in AWS GuardDuty or GCP Security Command Center (SCC). GCP SCC has an amazing feature to create custom findings via the API. This feature is quite hidden in the documentation, but in this article, we will explore the different...
Introduction In the current digital landscape, businesses are faced with an increasing number of cybersecurity threats. It is crucial to have robust security measures in place to protect sensitive data and maintain business continuity. One solution that can help is the Google Cloud Platform (GCP) Cloud Intrusion Detection System (IDS)...
AWS S3 is a great storage platform for hosting data. However, it's also a target for malicious intruders. 🎯 Most applications allow the user to upload their own data on S3 buckets. For example, to store images 📷, videos 📹, or any other custom data. How can you safeguard your AWS...
Software development is a dynamic process that involves multiple stages, from writing code to testing and deployment. Code quality plays a crucial role in software development, as it determines the overall performance and reliability of the software. Poor code quality can lead to bugs, crashes, and security vulnerabilities. SonarQube is...
The bigger our cloud environments are getting, the harder it is to manage all security alerts and vulnerabilities of our workloads and services. For this purpose, we can utilize a tool called Security information and event management (SIEM), which provide real-time analysis of security alerts. AWS offers the service OpenSearch...
Amazon announced GuardDuty during the AWS re:invent 2017 to protect AWS accounts against a wide variety of attacks. Amazon GuardDuty is a threat detection service that continuously monitors malicious activity and unauthorized behavior to protect your Amazon Web Services accounts, workloads, and data stored in Amazon S3. While using...
Introduction Today, we'll be exploring a powerful feature that allows you to export GCP Security Command Center findings to Pub/Sub, and then effortlessly transform them via Cloud Functions for seamless integration with other systems. Understanding GCP Security Command Center 🧠 Before we jump into the nitty-gritty details, let&...
Operating systems are becoming increasingly intricate, demanding meticulous configuration to ensure robust security. Nowhere is this more evident than with EC2 instances, where the operating system is dynamic and subject to change. The challenge lies in securing these instances. Enter the Center for Internet Security (CIS) Benchmarks - a guidance...
Introduction Are you tired of manually pushing Docker images to Artifact Registry? 🙋♀️🙋♂️ This time-consuming task can be tedious and error-prone. 😩 But fret not! 😉 I'm here to introduce you to a more efficient solution: automating the process with Cloud Build. 🚀 With Cloud Build, you can easily build and push...
GuardDuty Unveiled 🧯 Before we dive into the nitty-gritty of runtime protection, let's take a moment to understand what AWS GuardDuty is all about. GuardDuty is like a vigilant digital sentry, constantly scanning your AWS environment for any signs of malicious activity. It uses intelligent threat detection algorithms, machine...
Introduction If you've been following our journey, you'll recall our previous explorations into the AWS Session Manager and AWS Inspector Vulnerability Management. In our ongoing quest for comprehensive cloud security, we've peeled back layers to uncover the practical applications and benefits of these integral...
Introduction Have you ever wondered how to scale your Google Cloud Platform (GCP) network while keeping it secure and efficient? If so, you're in the right place! In this blog post, we're going to explore the fascinating world of the GCP Hub and Spoke architecture and...
