Exfiltrated, Signed, Delivered – What Can Go Wrong When an Amazon Elastic Compute Cloud (EC2) Instance is Exposed to SSRF
New CNAPPgoat scenario makes experimentation easy by triggering calls to AWS service from an EC2 instance exposed to SSRF The post Exfiltrated, Signed, Delivered – What Can Go Wrong When an Amazon ...
Exfiltrated, Signed, Delivered – What Can Go Wrong When an Amazon Elastic Compute Cloud (EC2) Instance is Exposed to SSRF
New CNAPPgoat scenario makes experimentation easy by triggering calls to AWS service from an EC2 instance exposed to SSRF The post Exfiltrated, Signed, Delivered – What Can Go Wrong When an Amazon ...
Building Custom Scenarios with CNAPPgoat
You can now construct and import your own vulnerability scenarios into CNAPPgoat, enhancing your cloud security skills The post Building Custom Scenarios with CNAPPgoat appeared first on Ermetic ...
The MGM Breach and the Role of IdP in Modern Cyber Attacks
A deep dive into the recent MGM breach and our insights into the actor behind the attack and possible mitigations. The post The MGM Breach and the Role of IdP in Modern ...
What’s New with CNAPPgoat?
Read about the newest, expanded features in Ermetic’s open source vulnerable-by-design tool for enhancing your security skills The post What’s New with CNAPPgoat? appeared first on Ermetic ...
The Azure Metadata Protection You Didn’t Know Was There
Some Azure services have an additional, not widely known, protection mechanism against session token exfiltration The post The Azure Metadata Protection You Didn’t Know Was There appeared first on Ermetic ...
Stronger Together: Writing a New Chapter in Cloud Security
We’re excited to share that Tenable has announced intent to acquire Ermetic. The post Stronger Together: Writing a New Chapter in Cloud Security appeared first on Ermetic ...
The Benefits of Cloud Entitlement Management
Cloud identities and entitlements pose grave challenges - learn about the benefits of CIEM solutions and KPIs for measuring them The post The Benefits of Cloud Entitlement Management appeared first on Ermetic ...
The Next Step in the IMDSv1 Redemption Journey
Learn about AWS’s new open source library for enforcing IMDSv2 and Ermetic’s new lab for trying it out The post The Next Step in the IMDSv1 Redemption Journey appeared first on Ermetic ...
CNAPPgoat: The Multicloud Open-Source Tool for Deploying Vulnerable-by-Design Cloud Resources
All about CNAPPgoat, our open-source project designed to modularly provision vulnerable-by-design components in cloud environments. The post CNAPPgoat: The Multicloud Open-Source Tool for Deploying Vulnerable-by-Design Cloud Resources appeared first on Ermetic ...
