Nov 26, 2022Visualizing Multi Cloud IAM ConceptsShort version: scroll down and enjoy the diagrams I drew to understand key AWS, Azure and GCP IAM concepts and terminology Update 1: Fixed the GCP pdf link Foreword Dear security people, Dear cloud engineers, as some of you might know the last few years my focus area was in security…Cloud Computing4 min readCloud Computing4 min read
Feb 6, 2021Cyber Security Incident Response — How to use Assumptions and Believes to drive your InvestigationA more negative title I was thinking of using 😒 If you use assumptions and believes in Cyber Security Incident Response to make decisions you have failed Security Incident Response Basics Most Incident Responders or SOC people are aware of the standard cyber security (or information security) incident response process. Normally the process follow…Incident Response7 min readIncident Response7 min read
May 1, 2020Splunk Attack Range in a virtualized Ubuntu Guest VM — GuideA quick guide to get this fantastic project running locally not in AWS. Project Link: https://github.com/splunk/attack_range !!!UPDATE!!! Read This guide no longer works as a step by step guide. The Splunk Attack Range does not support local installs with vagrant any more. However, the project https://github.com/splunk/attack_range_local/ does so all is well 😉 …Splunk10 min readSplunk10 min read
