📣 CNAPP for Dummies eBook  (Sponsor)

A clear, friendly guide to mastering the hot new category in cloud-native security that's taking the industry by storm. 

Wiz partnered with Wiley to create the Cloud Native Application Protection Platform (CNAPP) for Dummies eBook. This free 48-page PDF includes everything you *need* to know to secure the changing landscape of cloud-native applications and protect your cloud environment today.

You’ll Learn:

• The fundamentals of cloud-native security 
• Powerful tactics to strengthen security measures 
• Best practices for getting started 
• Techniques to shift security up the pipeline (and ahead of threats) 
• 10 strategies for maximizing the potential of your CNAPP

Get your free guide here.

🥗 Appetizer

Hey folks,

Happy New Year! 🍾 Ready to cook up some cloud security masterpieces in 2024?

Let's start this year with a flavor-packed menu of insights and updates.

As your head chef in the AWS Security kitchen, I'm always looking to spice things up. Your appetite for knowledge and your feedback are the secret ingredients that make our community sizzle.

Now, for the main course in this issue: I've whipped up a special HTTPS redirect recipe. It's like transforming a simple sub.domainA.tld into a gourmet other.domainB.tld, seasoned with CloudFront Function and the fresh-out-of-the-oven CloudFront KeyValueStore.

So, tie your apron, sharpen your skills, and let's get ready to feast on the cloud's delicious offerings in 2024!

Here's to a year of succulent solutions and cloud culinary adventures! 🍳

Bon Appétit!
Victor

🍹 Monitor AWS Managed IAM Policies

Managed Policy changed since last week: 10

1. AWSApplicationMigrationServiceEc2InstancePolicy
2. AWSArtifactReportsReadOnlyAccess
3. AWSElasticDisasterRecoveryNetworkReplicationPolicy
4. AWSElasticDisasterRecoveryServiceRolePolicy
5. 🚩 AWSServiceRoleForAmazonEKSNodegroup
6. 🚩 AmazonAthenaFullAccess
7. 🚩 AmplifyBackendDeployFullAccess
8. CloudFrontFullAccess
9. CloudFrontReadOnlyAccess
10. 🚩 ReadOnlyAccess

Weekly diff

🤖 Powered by MAMIP | 🚩 Sensitive IAM Actions included

🥣 Secret Sauce

Each week, we'll showcase your top AWS insights, focusing on AWS Security tricks and tips. Got a cool command-line hack, a clever console maneuver, or an awesome open-source tool? Send us your best tips for a shot at being featured in our upcoming issues.

From Toni, Creator of Prowler:

My fav command is this one since latest version because we improved it

$ prowler aws --allowlist prowler/config/aws_allowlist.yaml

That allows to filter out many findings, learn more in our documentation.