AWS

September 9, 2024
in JSON, AWS, jq
1 min read

Using jq to Process JSON

September 5, 2024
in AWS, Cloud Security, Security Architecture, Prowler
1 min read

AWS security assessments with Prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

September 12, 2023
in Docker, Containers, AWS, Azure, GCP
1 min read

Build a Docker Container for Cloud CLI Tools

My Docker container for Cloud CLI Tools.

This Dockerfile builds on a Ubuntu image and installs CLI tools for interacting with AWS, Azure, and GCP:

awscliv2 - AWS CLIv2
azure-cli - Microsoft Azure CLI
gcloud - Google Cloud SDK

The image also creates and runs under a non-root user.

August 1, 2023
in Cloud Security, AWS, Terraform
2 min read

Deploy a Desktop on AWS Using Terraform

This terraform script deploys an Ubuntu Workstation with minimal additional software installed. It enables SSH and RDP and uses security groups to restrict the administrative access to your current external IP address only to prevent it being wide open to the world.

An example use case is a temporary sandbox system for surfing potentially dangerous websites.

NOTE: Don't break the law, as AWS Terms of Service still apply and this is not exactly covert.

July 19, 2023
in Cloud Security, AWS, Virtual Networks
1 min read

Using jq to Process JSON

AWS security assessments with Prowler

Build a Docker Container for Cloud CLI Tools

Deploy a Desktop on AWS Using Terraform

AWS Virtual Networking Default Settings