Have you ever wondered how to scale your Google Cloud Platform (GCP) network while keeping it secure and efficient? If so, you're in the right place! In this blog post, we're going to explore the fascinating world of the GCP Hub and Spoke architecture and how it can take your...
Introduction In the past, I have struggled to create custom findings in AWS GuardDuty or GCP Security Command Center (SCC). GCP SCC has an amazing feature to create custom findings via the API. This feature is quite hidden in the documentation, but in this article, we will explore the different...
Introduction In the current digital landscape, businesses are faced with an increasing number of cybersecurity threats. It is crucial to have robust security measures in place to protect sensitive data and maintain business continuity. One solution that can help is the Google Cloud Platform (GCP) Cloud Intrusion Detection System (IDS)...
AWS S3 is a great storage platform for hosting data. However, it's also a target for malicious intruders. 🎯 Most applications allow the user to upload their own data on S3 buckets. For example, to store images 📷, videos 📹, or any other custom data. How can you safeguard your AWS S3 bucket...
Software development is a dynamic process that involves multiple stages, from writing code to testing and deployment. Code quality plays a crucial role in software development, as it determines the overall performance and reliability of the software. Poor code quality can lead to bugs, crashes, and security vulnerabilities. SonarQube is...
The bigger our cloud environments are getting, the harder it is to manage all security alerts and vulnerabilities of our workloads and services. For this purpose, we can utilize a tool called Security information and event management (SIEM), which provide real-time analysis of security alerts. AWS offers the service OpenSearch...
Amazon announced GuardDuty during the AWS re:invent 2017 to protect AWS accounts against a wide variety of attacks. Amazon GuardDuty is a threat detection service that continuously monitors malicious activity and unauthorized behavior to protect your Amazon Web Services accounts, workloads, and data stored in Amazon S3. While using...
Have you ever wondered how to scale your Google Cloud Platform (GCP) network while keeping it secure and efficient? If so, you're in the right place! In this blog post, we're going to explore the fascinating world of the GCP Hub and Spoke architecture and how it can take your...
1 year - 52 weeks - 56 articles 🔥 Introduction 🗓️ A year ago, on September 11th, 2022, I started this blog to talk about keeping our cloud environments safe. Today, I want to share what I've learned about my journey with you. Looking back, it's amazing how a year of growth...
Do you want to take control of your cloud security posture? 🔐 If so, you must know about GCP Security Command Center (SCC) custom policies. Custom policies allow you to define rules for what constitutes a security violation. This gives you the flexibility to tailor SCC to your specific needs and...
Do you want to keep your AWS workloads secure? 🔐 If so, you need to know what software components are running on your workloads. This is where software bills of materials (SBOMs) come in. SBOMs are a comprehensive list of the software components used in a software application. They can be...
Understanding AWS Inspector Before we dive into the configuration process, it's crucial to understand what AWS Inspector is and why it's essential. 🔍 AWS Inspector is a vulnerability management service that helps you identify vulnerabilities within your AWS resources. 🛡️ It performs automated security scans to identify potential package vulnerabilities or network...
Introduction If you love coding and collaborating with others on software projects, chances are you're already familiar with GitHub. But are you sure the code you are writing is secure? 🔐 That's where GitHub Advanced Security comes into play. This article will explore how to use GitHub Advanced Security CodeQL to...
