Aris🍻 @abouix@mastodon.cloud

You can now get access to DNS logs of #AWS #VPC #DNS resolvers! Previously only #GuardDuty had access to this data. This is a big move in the #Cloud #Security #Monitoring sphere!

https://t.co/3WLtkE470I

I observe that #encryption on #AWS remains an obscure area for even the most tech-savvy among us.

Therefore I've drafted this summary table to help to navigate.

Note: SSE-AES and SSE-C are only supported by the Amazon S3 service.

#kms #cloudcompliance #cloudsecurity #awssecurity
#kms #cloudcompliance #cloudsecurity #awssecurity

Just released a new blogpost to go along a #lab I've prepared on #AWS #Instance #Metadata Service (IMDS) and #IAM privilege escalation. #tweet

https://aristidebouix.cloud/en/2020/03/aws-cloud-metadata-service-abuse/index.html/

Here my latest publication and open-sourced project: building an AWS API for ServiceNow. This is only the first brick but can put you on the right track for more advanced use cases. #Serverless #AWS #ServiceNow #API

https://aristidebouix.cloud/en/2019/02/integrate-servicenow-with-your-aws-cloud/index.html/

Here the steps an #attacker need to achieve to #compromise your #AWS environment as well as some quick #mitigations.
A best architecture patterns deep dive is yet to come, stay tuned :-) #cybersecurity tweet

https://aristidebouix.cloud/2018/09/penetration-testing-on-aws/index.html/

A summary of how Public #Cloud technologies can be leveraged to improve the performance of traditional #BigData infrastructures. #AWSSummit #AWS #Euronext tweet

https://www.devoteam.com/2018/09/13/leveraging-cloud-big-data-analytics-rex-form-euronext/