Tag Archive | Marco Lancini's Blog

| Follow @lancinimarco | Subscribe to CloudSecList

2016 6
2017 3
2018 11
2019 4
2020 10
2021 11
2022 6
2023 2
aws 14
azure 2
backups 2
cartography 3
cloud 27
cloudflare 6
cloudsecbooks 1
culture 1
development 4
docker 14
gcp 11
infrastructure 20
kafka 2
kubernetes 16
pentest 12
serverless 3
strategy 4
vault 2

2016

Needle V0.1.1 Released

iOS 9: Effective Jailbreak

Needle V0.0.4 Released

Needle Status Update

A quick intro to Needle

Introducing Needle

2017

Docker + Consul + Vault: A Practical Guide

Needle meets Jenkins: how to include Needle in your CI pipeline

Needle v1.0.0 released: new native agent and support for iOS 10

2018

Critical Vulnerability in Kubernetes API Server (CVE-2018-1002105)

Red Teaming Mind Map from The Hacker Playbook 3

My Arsenal of Cloud Native (Security) Tools

Hunt for and Exploit the libSSH Authentication Bypass (CVE-2018-10933)

So I Heard You Want to Learn Kubernetes

Offensive Infrastructure: Introduction to Consul

Offensive ELK: Elasticsearch for Offensive Security

Robtex-Go: Go Client for the Robtex API

Introducing GoScan (aka a reason to learn Go)

Burp Pro as a Docker Container

2019

Cross Account Auditing in AWS and GCP

Introducing CloudSecList.com

Deploy Your Own Kubernetes Lab

Offensive Infrastructure: the HashiStack

2020

Semgrep for Cloud Security

Introducing CloudSecDocs.com

Domain-Wide Delegation of Authority in GSuite

Tracking Moving Clouds: How to continuously track cloud assets with Cartography

So I Heard You Want to Learn Kafka

The Current State of Kubernetes Threat Modelling

Building a Serverless Mailing List in AWS

My Blogging Stack

Remote Development with a Chromebook in 2020

Mapping Moving Clouds: How to stay on top of your ephemeral environments with Cartography

2021

Remotely Access your Kubernetes Lab with Cloudflare Tunnel

Introducing k8s-lab-plz: A modular Kubernetes Lab

Weekly Digests to Increase Visibility and Transparency

Automated GDrive Backups with ECS and S3

Automated Github Backups with ECS and S3

On Establishing a Cloud Security Program

Automating Cartography Deployments on Kubernetes

Kubernetes Lab on Baremetal

Security Logging in Cloud Environments - GCP

A Quick Look at GKE Autopilot (in 15 minutes)

Security Logging in Cloud Environments - AWS

2022

Serverless Emails with Cloudflare Email Routing

Cyber Security Career Pathways

Serverless Ad Blocking with Cloudflare Gateway

What to look for when reviewing a company's infrastructure

CVE-2022-0847 (aka Dirty Pipe): What does it mean for defenders

Docker on MacOS via minikube (2022 edition)

2023

Migrating Terraform state from Terraform Cloud to S3

Zero Trust Access to Private Webapps on AWS ECS with Cloudflare Tunnel

aws

Migrating Terraform state from Terraform Cloud to S3

Zero Trust Access to Private Webapps on AWS ECS with Cloudflare Tunnel

CVE-2022-0847 (aka Dirty Pipe): What does it mean for defenders

Automated GDrive Backups with ECS and S3

Automated Github Backups with ECS and S3

Automating Cartography Deployments on Kubernetes

Security Logging in Cloud Environments - AWS

Semgrep for Cloud Security

Introducing CloudSecDocs.com

Tracking Moving Clouds: How to continuously track cloud assets with Cartography

Building a Serverless Mailing List in AWS

My Blogging Stack

Mapping Moving Clouds: How to stay on top of your ephemeral environments with Cartography

Cross Account Auditing in AWS and GCP

azure

CVE-2022-0847 (aka Dirty Pipe): What does it mean for defenders

Introducing CloudSecDocs.com

backups

Automated GDrive Backups with ECS and S3

Automated Github Backups with ECS and S3

cartography

Automating Cartography Deployments on Kubernetes

Tracking Moving Clouds: How to continuously track cloud assets with Cartography

Mapping Moving Clouds: How to stay on top of your ephemeral environments with Cartography

cloud

Migrating Terraform state from Terraform Cloud to S3

Zero Trust Access to Private Webapps on AWS ECS with Cloudflare Tunnel

Serverless Emails with Cloudflare Email Routing

Cyber Security Career Pathways

Serverless Ad Blocking with Cloudflare Gateway

What to look for when reviewing a company's infrastructure

CVE-2022-0847 (aka Dirty Pipe): What does it mean for defenders

Remotely Access your Kubernetes Lab with Cloudflare Tunnel

Introducing k8s-lab-plz: A modular Kubernetes Lab

Automated GDrive Backups with ECS and S3

Automated Github Backups with ECS and S3

On Establishing a Cloud Security Program

Automating Cartography Deployments on Kubernetes

Security Logging in Cloud Environments - GCP

A Quick Look at GKE Autopilot (in 15 minutes)

Security Logging in Cloud Environments - AWS

Semgrep for Cloud Security

Introducing CloudSecDocs.com

Domain-Wide Delegation of Authority in GSuite

Tracking Moving Clouds: How to continuously track cloud assets with Cartography

So I Heard You Want to Learn Kafka

Building a Serverless Mailing List in AWS

My Blogging Stack

Mapping Moving Clouds: How to stay on top of your ephemeral environments with Cartography

Cross Account Auditing in AWS and GCP

Introducing CloudSecList.com

My Arsenal of Cloud Native (Security) Tools

cloudflare

Zero Trust Access to Private Webapps on AWS ECS with Cloudflare Tunnel

Serverless Emails with Cloudflare Email Routing

Serverless Ad Blocking with Cloudflare Gateway

Remotely Access your Kubernetes Lab with Cloudflare Tunnel

Building a Serverless Mailing List in AWS

My Blogging Stack

cloudsecbooks

Cyber Security Career Pathways

culture

Weekly Digests to Increase Visibility and Transparency

development

Docker on MacOS via minikube (2022 edition)

Building a Serverless Mailing List in AWS

My Blogging Stack

Remote Development with a Chromebook in 2020

docker

Zero Trust Access to Private Webapps on AWS ECS with Cloudflare Tunnel

CVE-2022-0847 (aka Dirty Pipe): What does it mean for defenders

Docker on MacOS via minikube (2022 edition)

Introducing k8s-lab-plz: A modular Kubernetes Lab

Introducing CloudSecDocs.com

Deploy Your Own Kubernetes Lab

Offensive Infrastructure: the HashiStack

My Arsenal of Cloud Native (Security) Tools

So I Heard You Want to Learn Kubernetes

Offensive Infrastructure: Introduction to Consul

Offensive ELK: Elasticsearch for Offensive Security

Burp Pro as a Docker Container

Docker + Consul + Vault: A Practical Guide

gcp

CVE-2022-0847 (aka Dirty Pipe): What does it mean for defenders

Automated GDrive Backups with ECS and S3

Automating Cartography Deployments on Kubernetes

Security Logging in Cloud Environments - GCP

A Quick Look at GKE Autopilot (in 15 minutes)

Semgrep for Cloud Security

Introducing CloudSecDocs.com

Domain-Wide Delegation of Authority in GSuite

Tracking Moving Clouds: How to continuously track cloud assets with Cartography

Mapping Moving Clouds: How to stay on top of your ephemeral environments with Cartography

Cross Account Auditing in AWS and GCP

infrastructure

Migrating Terraform state from Terraform Cloud to S3

Zero Trust Access to Private Webapps on AWS ECS with Cloudflare Tunnel

Serverless Emails with Cloudflare Email Routing

Serverless Ad Blocking with Cloudflare Gateway

Remotely Access your Kubernetes Lab with Cloudflare Tunnel

Introducing k8s-lab-plz: A modular Kubernetes Lab

Automated GDrive Backups with ECS and S3

Automated Github Backups with ECS and S3

Kubernetes Lab on Baremetal

Security Logging in Cloud Environments - GCP

Security Logging in Cloud Environments - AWS

Domain-Wide Delegation of Authority in GSuite

Tracking Moving Clouds: How to continuously track cloud assets with Cartography

Building a Serverless Mailing List in AWS

My Blogging Stack

Mapping Moving Clouds: How to stay on top of your ephemeral environments with Cartography

Cross Account Auditing in AWS and GCP

Deploy Your Own Kubernetes Lab

Offensive Infrastructure: the HashiStack

Offensive Infrastructure: Introduction to Consul

kafka

Introducing CloudSecDocs.com

So I Heard You Want to Learn Kafka

kubernetes

What to look for when reviewing a company's infrastructure

Docker on MacOS via minikube (2022 edition)

Remotely Access your Kubernetes Lab with Cloudflare Tunnel

Introducing k8s-lab-plz: A modular Kubernetes Lab

On Establishing a Cloud Security Program

Automating Cartography Deployments on Kubernetes

Kubernetes Lab on Baremetal

A Quick Look at GKE Autopilot (in 15 minutes)

Semgrep for Cloud Security

Introducing CloudSecDocs.com

The Current State of Kubernetes Threat Modelling

Introducing CloudSecList.com

Deploy Your Own Kubernetes Lab

Critical Vulnerability in Kubernetes API Server (CVE-2018-1002105)

My Arsenal of Cloud Native (Security) Tools

So I Heard You Want to Learn Kubernetes

pentest

CVE-2022-0847 (aka Dirty Pipe): What does it mean for defenders

Cross Account Auditing in AWS and GCP

Critical Vulnerability in Kubernetes API Server (CVE-2018-1002105)

Red Teaming Mind Map from The Hacker Playbook 3

My Arsenal of Cloud Native (Security) Tools

Hunt for and Exploit the libSSH Authentication Bypass (CVE-2018-10933)

Offensive Infrastructure: Introduction to Consul

Offensive ELK: Elasticsearch for Offensive Security

Robtex-Go: Go Client for the Robtex API

Introducing GoScan (aka a reason to learn Go)

Burp Pro as a Docker Container

serverless

Serverless Emails with Cloudflare Email Routing

Serverless Ad Blocking with Cloudflare Gateway

What to look for when reviewing a company's infrastructure

strategy

Cyber Security Career Pathways

What to look for when reviewing a company's infrastructure

Weekly Digests to Increase Visibility and Transparency

On Establishing a Cloud Security Program

vault

Offensive Infrastructure: the HashiStack

Docker + Consul + Vault: A Practical Guide