Syndicated Blog

New CNAPPgoat scenario makes experimentation easy by triggering calls to AWS service from an EC2 instance exposed to SSRF The post Exfiltrated, Signed, Delivered – What Can Go Wrong When an Amazon ...

New CNAPPgoat scenario makes experimentation easy by triggering calls to AWS service from an EC2 instance exposed to SSRF The post Exfiltrated, Signed, Delivered – What Can Go Wrong When an Amazon ...

You can now construct and import your own vulnerability scenarios into CNAPPgoat, enhancing your cloud security skills The post Building Custom Scenarios with CNAPPgoat appeared first on Ermetic ...

A deep dive into the recent MGM breach and our insights into the actor behind the attack and possible mitigations. The post The MGM Breach and the Role of IdP in Modern ...

Read about the newest, expanded features in Ermetic’s open source vulnerable-by-design tool for enhancing your security skills The post What’s New with CNAPPgoat?  appeared first on Ermetic ...

Some Azure services have an additional, not widely known, protection mechanism against session token exfiltration The post The Azure Metadata Protection You Didn’t Know Was There appeared first on Ermetic ...

We’re excited to share that Tenable has announced intent to acquire Ermetic. The post Stronger Together: Writing a New Chapter in Cloud Security appeared first on Ermetic ...

Cloud identities and entitlements pose grave challenges - learn about the benefits of CIEM solutions and KPIs for measuring them The post The Benefits of Cloud Entitlement Management appeared first on Ermetic ...

Learn about AWS’s new open source library for enforcing IMDSv2 and Ermetic’s new lab for trying it out The post The Next Step in the IMDSv1 Redemption Journey  appeared first on Ermetic ...

All about CNAPPgoat, our open-source project designed to modularly provision vulnerable-by-design components in cloud environments. The post CNAPPgoat: The Multicloud Open-Source Tool for Deploying Vulnerable-by-Design Cloud Resources appeared first on Ermetic ...