Security
How to test K8S SA’s permissions when OIDC IAM Role was provided in AWS EKS
With the following 'human readable' title, "How to test ( or an example to make use of ) the Kubernetes ServiceAccount's functionality if an AWS IAM Role, which can be…
Read morePreventing email deliverability failures and spoofing
Long story short, as almost all vulnerabilities comes from human side, we had a small missconfig in our SPF/DMARC record which was found randomly by a security freelancer who inform…
Read moreOne line appsec firewall for nginx w. fail2ban
After we saw that that a lot of traffic | ~25% | is coming from bots ( some kind of automated script or program ) who are trying to login…
Read moreSetting up a VPN server for small infrastructures
Supposed that we have a small application which have dev, test and prod env. that should only be accessible for team members and we wanna have access from home or…
Read more