Alexander Hose

Alexander Hose

Germany X/Twitter
Check out the latest posts

Centrally Managing AWS GuardDuty for an AWS Organization

Introduction Imagine you’re responsible for securing an AWS environment with dozens or even hundreds of accounts. Each account has its own users, permissions, and workloads. One day, you find out that a compromised IAM key in a sandbox account was used to exfiltrate data from an S3 bucket. The...

AWS Cross-Account Roles with Lambda

Introduction When managing an AWS Organization, you often need to execute tasks across multiple AWS accounts. Instead of manually configuring credentials for each account, AWS provides cross-account IAM roles that allow services in one account (such as a Lambda function in the central account) to assume a role in another...

Getting Started with Crossplane

Introduction During Christmas, I had some extra time on my hands - a perfect opportunity to catch up on tech I’d been meaning to explore. A few colleagues had been discussing about Crossplane recently, and it got me curious. What is it really about? How does it fit into...

How to hack GCP compute instances

Introduction Google Cloud offers a secure and efficient way to manage permissions and authentication through service accounts. These accounts are typically associated with GCP resources like Compute Engine instances, allowing them to securely access other Google Cloud services. But how can we abuse the service account credentials and use them...

You’ve successfully subscribed to Alexander Hose
Welcome back! You’ve successfully signed in.
Great! You’ve successfully signed up.
Success! Your email is updated.
Your link has expired
Success! Check your email for magic link to sign-in.