Introducing The Complete Guide to SecDataOps and Vulnerability Management on AWS
After going back and forth with my LinkedIn followers in mid-2022 about a post on vulnerability management on AWS, I transformed the thought into 110 pages (thanks to screenshot and code snippets) into what I believe to be the definitive resource for starting a Security Data Operations (SecDataOps) team with ... Read More
Undisclosed OpenSSL vulnerability: Free scripts for target scoping
Tomorrow is “patch Tuesday” and it's a notable one. The OpenSSL project team announced last week that they will be releasing OpenSSL version 3.0.7, with a patch to fix a critical security vulnerability. Until the vulnerability details are released, not much is known about the nature of the vulnerability. In ... Read More
Microsoft Defender for Endpoint on AWS: Part 4 – Final Entry
In the first three entries in this series, we did everything from manual installation of Microsoft Defender for Endpoint (MDE) XDR agents on AWS EC2 instances,using AWS EC2 Image Builder for installing MDE, and using our tool – the Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) – to install MDE on ... Read More
Why Create an EKS Creation Tool?
In our latest log in the Microsoft Defender on AWS Series, we introduced a tool created from the ground up by the Lightspin Office of the CISO, the Amazon Elastic Kubernetes Services (EKS) Creation Engine (ECE). The most obvious question to ask is “why?” Despite the fact there is a ... Read More
Microsoft Defender for Endpoint on AWS: Part 3
In our first two entries in this series, we explored installing Microsoft Defender for Endpoint (MDE) XDR agents on AWS EC2 instances, using manual scripts and AWS EC2 Image Builder, respectively. In this penultimate entry in the series, we will experiment with installing MDE onto Amazon Elastic Kubernetes Service (EKS) ... Read More
Microsoft Defender for Endpoint on AWS: Part 2
In the first entry in this series, we explored what Endpoint Detection and Response (EDR) is, and why the Lightspin Office of the CISO uses it to secure our Amazon EC2 server estate. We previously provided scripts and a basic walkthrough of the installation and configuration of the Microsoft Defender for Endpoint ... Read More
Microsoft Defender for Endpoint on AWS: Part 1
Protecting Your AWS Server Estate When it comes to protecting your AWS server estate, or your endpoints and servers in a broader perspective no matter the environment, one security tool solution that comes to mind is Endpoint Detection and Response (EDR). First suggested to Gartner in 2013, the EDR solution ... Read More
