Posts

• Mar 21, 2023

  Lambda CloudTrail data events

• Feb 20, 2023

  A role for all your EC2 instances

• Jan 11, 2023

  Improve GitHub Actions OIDC security posture with custom issuer

• Dec 16, 2022

  Centralised logging: from CloudWatch to Kinesis Firehose

• Dec 15, 2022

  Lambda extension environment variables

• Oct 19, 2022

  Configuration in the cloud

• Oct 16, 2022

  CloudFront and Lambda function URLs

• Oct 15, 2022

  Cheap serverless containers using API Gateway

• Jul 14, 2022

  openrolesanywhere - an IAM Roles Anywhere client

• Feb 3, 2022

  AWS VPC data exfiltration using CodeBuild

• Jan 20, 2022

  AWS GWLB: Deep Packet Manipulation

• Jan 6, 2022

  IPv6 and TOTP

• Jan 2, 2022

  Shared VPCs are underrated

• Nov 22, 2021

  CloudWatch EMF in Honeycomb

• Nov 6, 2021

  No need for AWS IAM users

• Oct 29, 2021

  Two approaches to cross-account EventBridge

• Oct 24, 2021

  AWS SigV4 caching

• Oct 17, 2021

  cgo for ARM64 Lambda Functions

• Oct 12, 2021

  Nested Express Step Functions

• Oct 12, 2021

  AWS IAM OIDC IDPs need more controls

• Sep 29, 2021

  Graviton2: ARM comes to Lambda

• Sep 15, 2021

  AWS federation comes to GitHub Actions

• Sep 6, 2021

  API Gateway HTTP APIs and SQS MessageAttributes

• May 11, 2021

  Give me a role in your AWS account

• Dec 24, 2020

  AWS Lambda $LATEST is dangerous

• Nov 29, 2020

  Cursory AWS KMS research

• Nov 2, 2020

  Nitro Enclaves - First Impressions

• Sep 29, 2020

  AWS IAM needs aws:ResourceOrgID

• Sep 26, 2020

  AWS Access Key ID formats

• Sep 25, 2020

  Yet another blog

• Sep 22, 2020

  Security September: Cataclysms in the Cloud Formations

• Sep 8, 2020

  Security September: Escaping CodeBuild - The compromise that wasn't

subscribe via RSS