overview for 0xCBE

What do you do when Nix isn't worth the time? in c/nixos@infosec.pub

[–] 0xCBE@infosec.pub 1 points 2 years ago

You build a derivation yourself... which I never do. I am on mac so I brew install and orchestrate brew from home manager. I find it works good as a compromise.

3

A framework to securely use LLMs in companies - Part 1: Overview of Risks (boringappsec.substack.com)

submitted 2 years ago by 0xCBE@infosec.pub to c/ai_infosec@infosec.pub

0 comments fedilink

4

Bad.Build: A Critical Privilege Escalation Design Flaw in Google Cloud Build Enables a Supply Chain Attack (orca.security)

submitted 2 years ago by 0xCBE@infosec.pub to c/cloudsecurity@infosec.pub

0 comments fedilink

3

Impact of remote-code execution vulnerability in LangChain (ntietz.com)

submitted 2 years ago by 0xCBE@infosec.pub to c/ai_infosec@infosec.pub

0 comments fedilink

2

PoisonGPT: How we hid a lobotomized LLM on Hugging Face to spread fake news (blog.mithrilsecurity.io)

submitted 2 years ago by 0xCBE@infosec.pub to c/ai_infosec@infosec.pub

1 comments fedilink

3

ALFA: Automated Audit Log Forensic Analysis for Google Workspace (github.com)

submitted 2 years ago by 0xCBE@infosec.pub to c/cloudsecurity@infosec.pub

0 comments fedilink

cross-posted from: https://infosec.pub/post/397812

Automated Audit Log Forensic Analysis (ALFA) for Google Workspace is a tool to acquire all Google Workspace audit logs and perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework.

By Greg Charitonos and BertJanCyber

1

Prompt Injection Attacks and Mitigations (rez0.blog)

submitted 2 years ago by 0xCBE@infosec.pub to c/ai_infosec@infosec.pub

0 comments fedilink

5

Building Chainguard's container image registry (www.chainguard.dev)

submitted 2 years ago by 0xCBE@infosec.pub to c/cloudsecurity@infosec.pub

0 comments fedilink

We’ve made a few changes to the way we host and distribute our Images over the last year to increase security, give ourselves more control over the distribution, and most importantly to keep our costs under control [...]

6

Kubernetes Security Basics Series Part I - Deployment and Container Orchestration (ksoc.com)

submitted 2 years ago by 0xCBE@infosec.pub to c/cloudsecurity@infosec.pub

0 comments fedilink

This first post in a 9-part series on Kubernetes Security basics focuses on DevOps culture, container-related threats and how to enable the integration of security into the heart of DevOps.

2

Kubernetes Grey Zone: Risks in Managed Cluster Middleware (www.wiz.io)

submitted 2 years ago by 0xCBE@infosec.pub to c/cloudsecurity@infosec.pub

0 comments fedilink

5

My AWS Pentest Methodology (medium.com)

submitted 2 years ago by 0xCBE@infosec.pub to c/cloudsecurity@infosec.pub

0 comments fedilink

1

JWT authentication bypass via X-HTTP-Method-Override header (github.com)

submitted 2 years ago by 0xCBE@infosec.pub to c/redteam@infosec.pub

0 comments fedilink

3

Microsoft says early June disruptions to Outlook, cloud platform, were cyberattacks (apnews.com)

submitted 2 years ago by 0xCBE@infosec.pub to c/securitynews@infosec.pub

0 comments fedilink

What are your favorite herbs/spices that you grow yourself? in c/gardening@thegarden.land

[–] 0xCBE@infosec.pub 2 points 2 years ago

nice! I didn’t know this plant. I’ll try to find some.

What are your favorite herbs/spices that you grow yourself? in c/gardening@thegarden.land

[–] 0xCBE@infosec.pub 8 points 2 years ago (2 children)

I like basil. At some point I i got tired of killing all the plants and started learning how to properly grow and care greens with basil.

It has plenty of uses and it requires the right amount of care, not too simple not too complex.

I’ve grown it from seeds, cuttings, in pots, outside and in hydroponics.

Toyota admits to yet another cloud leak in c/cloudsecurity@infosec.pub

[–] 0xCBE@infosec.pub 2 points 2 years ago

This is the official statement I think: https://global.toyota/jp/newsroom/corporate/39174380.html but it's light on details (I think, I google translated)

From reading around it looks like it was either a compute instance or a database exposed by mistake, nothing sophisticated.

[userscript] (grease/violent/tamper) *monkey script to reformat Lemmy's look and feel to old.reddit with RES in c/plugins@sh.itjust.works

[–] 0xCBE@infosec.pub 1 points 2 years ago

Maybe it's enough to make a pull request to the original CSS files here? I would guess the Lemmy devs would rather focus more on the backend right now

How to get rid of AWS access keys- Part 1: The easy wins in c/cloudsecurity@infosec.pub

[–] 0xCBE@infosec.pub 3 points 2 years ago

I think access keys are a legacy authentication mechanism from a time where the objective was increasing cloud adoption and public clouds wanted to support customers to transition from on prem to cloud infra.

But for cloud native environments there are safer ways to authenticate.

A data point: for GCP now Google also advise new customers to enable from the start the org policy to disable service account key creation.

[userscript] (grease/violent/tamper) *monkey script to reformat Lemmy's look and feel to old.reddit with RES in c/plugins@sh.itjust.works

[–] 0xCBE@infosec.pub 1 points 2 years ago (2 children)

great! Have you consider packing this up as a full theme for Lemmy?

what are some good communities NOT on beehaw.org or lemmy.ml? in c/chat@beehaw.org

[–] 0xCBE@infosec.pub 1 points 2 years ago

nice instance!

welcome in c/cloudsecurity@infosec.pub

[–] 0xCBE@infosec.pub 4 points 2 years ago

ahah thank you, we shall all yell together then