Amazon GuardDuty enhances security incident investigation workflows through new integration with Amazon Detective • Amazon Detective enhances IP Address Analytics • AWS Certificate Manager Private Certificate Authority now supports additional certificate customization • I've reached 10K followers 🎉 I can afford to lose some, so I finally gotta say it, some of you baby your cast iron too much. Seasoning doesn't matter. Just cook with more butter. I don't clean with soap, but I would or even an angle grinder if needed. It's made to take abuse. • I talked with someone today who is trying to figure out their career and where to start with AWS as their whole environment is Azure. Look, I like AWS, but there are plenty of career opportunities in other the clouds! The grass isn't that much greener. 1/3 • We're starting to plan fwd:cloudsec 2021! We just sent out a message to the mailing list, but the main points are: - It'll be in September. Dates and location TBD. - CFP won't open for a few months. - We're looking for volunteers. Apply at <a href="https://t.co/RWS1Phd4dc" target="_blank">fwdcloudsec.org/volunteers.html</a> • 😈 Creating malicious VSCode extensions for MacOS post-exploitation <a href="https://twitter.com/domchell" target="_blank">@domchell</a> describes their process: * Create template repo w/ Yeoman * Run JXA through osascript * Can use Mythic or another C2 for persistence if you want <a href="https://twitter.com/hashtag/redteam" target="_blank">#redteam</a> <a href="https://t.co/gGKjDSjfhJ" target="_blank">mdsec.co.uk/2021/01/macos-…</a> • 📚 tl;dr sec 67 * <a href="https://twitter.com/guysenkot" target="_blank">@guysenkot</a> Effectively rolling out IaC scanning * AWS auto-remediation with Cloud Custodian * <a href="https://twitter.com/0xdabbad00" target="_blank">@0xdabbad00</a> & <a href="https://twitter.com/QuinnyPig" target="_blank">@QuinnyPig</a> talk AWS security * <a href="https://twitter.com/domchell" target="_blank">@domchell</a> macOS post-exploitation w/ VSCode ext * <a href="https://twitter.com/DanielMiessler" target="_blank">@DanielMiessler</a> Maximizing appreciation of life <a href="https://t.co/HK7zfm5yBe" target="_blank">tldrsec.com/blog/tldr-sec-…</a> • I have to say every morning I wake up and check Slack and I am blown away by how much <a href="https://twitter.com/rafalwilinski" target="_blank">@rafalwilinski</a> <a href="https://twitter.com/mthenw" target="_blank">@mthenw</a> <a href="https://twitter.com/wm_matuszewski" target="_blank">@wm_matuszewski</a> <a href="https://twitter.com/tlakomy" target="_blank">@tlakomy</a> have achieved over night. I don't think I've ever worked in a place with such a phenomenal team. Seeing the product come to life is so much fun! • Throwback to 6yrs ago when I had hair and made awful jokes on marketing videos 👨🦲😂 This was a lot of fun <a href="https://twitter.com/ALHenman" target="_blank">@ALHenman</a> <a href="https://twitter.com/GlenPRobinson" target="_blank">@GlenPRobinson</a> <a href="https://twitter.com/iaingavin" target="_blank">@iaingavin</a> • Come work with me at <a href="https://twitter.com/wildlifestudios" target="_blank">@wildlifestudios</a> ! The Corporate IT team is looking for an IAM specialist to work on all-things Okta. <a href="https://twitter.com/hashtag/okta" target="_blank">#okta</a> <a href="https://twitter.com/hashtag/jobs" target="_blank">#jobs</a> <a href="https://twitter.com/hashtag/IAM" target="_blank">#IAM</a> <a href="https://twitter.com/hashtag/Argentina" target="_blank">#Argentina</a> <a href="https://twitter.com/hashtag/Brazil" target="_blank">#Brazil</a> <a href="https://t.co/ZUNXkx4nVf" target="_blank">linkedin.com/jobs/view/2367…</a> • After serverless, NamingConventionLess... • Watching the inauguration has me filled with so much hope 🇺🇸💙 • Getting full visibility within an AWS environment is not easy even for AWS itself. That’s why tooling like Cartography can help getting started • So uhhh signing up for AWS accounts outside of the USA is going to become significantly more frustrating. It also applies to maintenance of existing accounts. I wonder what happens if we don’t provide the extra info <a href="https://twitter.com/iann0036" target="_blank">@iann0036</a> your account vending machine might be a crime now 😅 • Today I launched a podcast (Norwegian only) with <a href="https://twitter.com/ooestbye" target="_blank">@ooestbye</a> <a href="https://t.co/i1KEXuCaPb" target="_blank">linkedin.com/posts/casto3_c…</a> • The CISSP Official Study Guide <a href="https://t.co/3iW9D2uhT0" target="_blank">twitter.com/SunSuzSunTzuin…</a> • Just realised I didn't have a page dedicated to AWS Service Control Policies (SCPs) in CloudSecDocs. So here it is: <a href="https://t.co/I2gpG265Of" target="_blank">cloudsecdocs.com/aws/devops/res…</a> • Painful problems using Cloud providers • AWS to create an ALv2-licensed fork of Elasticsearch and Kibana. • Amazon: Not OK – why we had to change Elastic licensing • AWS is creating a 'new open source design system' with React • We are the AWS CDK Team - Ask the Experts - Jan 27th @ 10AM PT / 1PM ET / 6PM GMT! • Senior AWS left the company so me as a junior had to step in his shoes. Need help!
Amazon GuardDuty has added Amazon Detective hyperlink pivots to make it even easier to jump from a GuardDuty security finding into a pre-populated Amazon Detective investigation experience.
Amazon Detective now provides enhanced IP address analytics enabling faster security investigations. With this new capability you can answer questions about a specific IP address such as “how long has this IP address been interacting with the resources in my accounts”, “which of my EC2 instances did this IP address …
AWS Certificate Manager (ACM) Private Certificate Authority (CA) now supports additional customization options for issuing CA and end entity certificates to meet additional use cases such as identity certificates, including smart card certificates. Customers can now include certificate attributes via API calls at the time of issuance in addition to …
I've reached 10K followers 🎉 I can afford to lose some, so I finally gotta say it, some of you baby your cast iron too much. Seasoning doesn't matter. Just cook with more butter. I don't clean with soap, but I would or even an angle grinder if needed. It's made to take abuse.
I talked with someone today who is trying to figure out their career and where to start with AWS as their whole environment is Azure. Look, I like AWS, but there are plenty of career opportunities in other the clouds! The grass isn't that much greener. 1/3
We're starting to plan fwd:cloudsec 2021! We just sent out a message to the mailing list, but the main points are: - It'll be in September. Dates and location TBD. - CFP won't open for a few months. - We're looking for volunteers. Apply at fwdcloudsec.org/volunteers.html
😈 Creating malicious VSCode extensions for MacOS post-exploitation
@domchell describes their process: * Create template repo w/ Yeoman * Run JXA through osascript * Can use Mythic or another C2 for persistence if you want
The number of AWS services has grown faster than the number of services covered by AWS Config. As a result, AWS Config coverage to get a snapshot of the metadata of your account has gotten worse over time. ☹️
So uhhh signing up for AWS accounts outside of the USA is going to become significantly more frustrating. It also applies to maintenance of existing accounts. I wonder what happens if we don’t provide the extra info
@iann0036 your account vending machine might be a crime now 😅
The AWS Cloud Development Kit (AWS CDK) is an open source software development framework to define your cloud application resources using familiar programming languages. AWS CDK uses the familiarity and expressive power of programming languages for modeling your applications. It provides you with high-level components called constructs that preconfigure cloud …
I know at first it will not sound a legit/valid request but believe me it is real and I am sort of worried. Okay, not gonna lie I almost s^€t my pants when I was told the news.
Long story short, in the finishing line of migrating a …
