Scott Piper

@0xdabbad00

Independent consultant for AWS security : Training, assessments, custom software development, and more. Developed and CloudMapper.

Vrijeme pridruživanja: kolovoz 2012.

Tweetovi

Blokirali ste korisnika/cu @0xdabbad00

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @0xdabbad00

  1. Prikvačeni tweet
    16. ruj 2019.

    Is your company interested in having a 2 day advanced AWS security training? I offer that! See what others have said about it at:

    Poništi
  2. proslijedio/la je Tweet
    prije 8 sati

    <--the "b-sides" of cloud security from looks cool, CFP open!

    Poništi
  3. proslijedio/la je Tweet
    31. sij

    2020 Opening Keynote - Alex Stamos is now available for you to watch!

    Poništi
  4. proslijedio/la je Tweet
    31. sij

    The CFP for fwd:cloudsec is now open! Details at Also we've got a logo, so finally we can start handing out stickers soon.

    Poništi
  5. 31. sij

    Critical vulns found in Azure by CheckPoint researcher . This would have allowed compromise of Azure infrastructure to compromise other tenants (ie. the worst thing that can happen with cloud threats).

    Poništi
  6. 31. sij

    Normally there are AWS SDK commits every day. There have been none this week. There are 3 main dead weeks at AWS as told by their SDK commits: - Week 5 (this week): Annual review period I'm told - Week 15: Aligns with April 15 when taxes are due - Week 52: Christmas/New Years

    Poništi
  7. 30. sij

    This is the only public training I'll do this year. If you're interested in AWS security and heading to summer camp, you should sign up.

    Poništi
  8. proslijedio/la je Tweet
    29. sij

    Any advisory that contains the line “to overcome this limitation we drew inspiration from the Morris worm” in 2020 is pure gold. Team Qualys continues their retro onslaught vs OpenBSD.

    Prikaži ovu nit
    Poništi
  9. 28. sij

    This is a real thing. I was given AWS credits due to my work on CloudMapper, Parliament, and other tools. Thank you !

    Poništi
  10. proslijedio/la je Tweet
    27. sij

    Blog post: Locking down the Instance Metadata Service: Announcing imds-filterd

    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet
    27. sij

    What CloudFront is: A globally distributed CDN with points of presence everywhere, an execution location for Lambda functions, and a caching engine. What I use CloudFront for: SSL certificates and custom domain names for my static websites.

    Poništi
  12. proslijedio/la je Tweet
    27. sij

    Get yourself a job / gig at some point in your career where you have no access to Google - sone facility with no phones or internet allowed or accessible for one reason or another. You will be stretched in ways you didn’t think possible and read man pages you’ve only skimmed.

    Poništi
  13. 24. sij
    Poništi
  14. proslijedio/la je Tweet
    23. sij

    Architecting for Performance and Security At The Same Time I wrote this up really quickly, but it's basically how I have approached building hardened, scalable services in Grapl by focusing on isolation.

    Prikaži ovu nit
    Poništi
  15. 23. sij

    This had to be the most awkward AWS notice, to tell a customer their AWS access keys were pushed to a repo on Github. What repo? An AWS employee's own repo. 😱

    Poništi
  16. proslijedio/la je Tweet
    23. sij

    When IT people favor their resume over results, you get temporary bubbles of hype and their businesses pay some sort of unavoidable tax. When data scientists do it, puppies get euthanized and other terrible stuff. Super thought provoking problem:

    Poništi
  17. proslijedio/la je Tweet
    22. sij

    "Yes, yes, you can build a multicloud container orchestration whatsit with Kubernetes, but let's stop kidding ourselves for a second; what you're really building is your résumé."

    Poništi
  18. 22. sij

    I don't focus much on CloudMapper's network visualization abilities anymore (I focus more on its auditing and other functionality), so I'll admit from the demo video, this looks really nice for those wanting that functionality.

    Poništi
  19. 21. sij

    If NSO used AWS as part of their hacking of Bezos, it'll be interesting to see if AWS uses their privileged access to AWS customer accounts to investigate this situation. Although reasonable for AWS to do so, it would violate a customer expectation.

    Poništi
  20. proslijedio/la je Tweet
    20. sij

    Just blogged: "Mapping Moving Clouds: How to stay on top of your ephemeral environments with Cartography" - How to leverage Cartography to detect, identify, categorize, and visualize all the assets being deployed in your estate

    Poništi
  21. proslijedio/la je Tweet
    17. sij

    AWS Health enables aggregation of health events across AWS Organizations You can now centrally aggregate your AWS Health events from all accounts in your organization. AWS Organizations enables you to centrally govern and manage across multiple AWS...

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·