- Add defense in depth against open firewalls, reverse proxies, and SSRF vulnerabilities with enhancements to the EC2 Instance Metadata Service | Amazon Web Services https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/ 7 comments netsec
- EC2 Instance Metadata Service (IMDSv2) is available - protects against SSRF and other attacks https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/ 19 comments aws
Linking pages
- The State of AWS Security | Datadog https://www.datadoghq.com/state-of-aws-security/ 94 comments
- Amazon EC2 Enhances Defense in Depth with Default IMDSv2 https://www.infoq.com/news/2023/11/aws-ec2-IMDSv2/ 56 comments
- GitHub - SummitRoute/imdsv2_wall_of_shame: List of vendors that do not allow IMDSv2 enforcement https://github.com/SummitRoute/imdsv2_wall_of_shame 21 comments
- OWASP Top-10 2021. Statistics-based proposal. 📄- Wallarm https://lab.wallarm.com/owasp-top-10-2021-proposal-based-on-a-statistical-data/ 10 comments
- Using AWS security services to protect against, detect, and respond to the Log4j vulnerability | AWS Security Blog https://aws.amazon.com/blogs/security/using-aws-security-services-to-protect-against-detect-and-respond-to-the-log4j-vulnerability/ 7 comments
- Getting started with Version 2 of AWS EC2 Instance Metadata service (IMDSv2) | by Sunesh Govindaraj | Appsecco https://blog.appsecco.com/getting-started-with-version-2-of-aws-ec2-instance-metadata-service-imdsv2-2ad03a1f3650 6 comments
- A super-quick way to speed up your containers on AWS | Indie hacking | µSaaSes | Cloud https://marcinchmiel.com/articles/2020-11/a-super-quick-way-to-speed-up-your-containers-on-aws/ 6 comments
- Amazon EC2 Instance Metadata Service IMDSv2 by default | AWS News Blog https://aws.amazon.com/blogs/aws/amazon-ec2-instance-metadata-service-imdsv2-by-default/ 4 comments
- GitHub - adamchainz/ec2-metadata: An easy interface to query the EC2 metadata API, with caching. https://github.com/adamchainz/ec2-metadata 3 comments
- Towards secure by default Google Cloud: Default service accounts | by Jan Masarik | code.kiwi.com https://code.kiwi.com/towards-secure-by-default-google-cloud-platform-service-accounts-244ad9fc772 0 comments
- chair6.net – Programmatic Terraform config manipulation, Semgrep's autofix, and an example of OSS contribution https://chair6.net/programmatic-terraform-config-manipulation-semgreps-autofix-and-an-example-of-oss-contribution.html 0 comments
- Old Services, New Tricks: Cloud Metadata Abuse by UNC2903 | Mandiant https://www.mandiant.com/resources/cloud-metadata-abuse-unc2903 0 comments
- Orca Security, AWS, and the Killer Whale of a Problem - Last Week in AWS Blog https://www.lastweekinaws.com/blog/orca-security-aws-and-the-killer-whale-of-a-problem/ 0 comments
- Top 11 posts during 2019 | AWS Security Blog https://aws.amazon.com/blogs/security/top-11-posts-during-2019/ 0 comments
- What's New in TeamCity 2023.05 | TeamCity On-Premises Documentation https://www.jetbrains.com/help/teamcity/what-s-new-in-teamcity.html 0 comments
- The Cloud is Darker and More Full of Terrors - Sec-T 2024 - Chris Farris https://www.chrisfarris.com/post/sect2024/ 0 comments
Linked pages
- Protect Web Applications – AWS WAF – Amazon Web Services https://aws.amazon.com/waf/ 97 comments
- Secure and resizable cloud compute – Amazon EC2 – Amazon Web Services https://aws.amazon.com/ec2/ 46 comments
- Amazon S3 - Cloud Object Storage - AWS http://aws.amazon.com/s3/ 31 comments
- List the available CloudWatch metrics for your instances - Amazon Elastic Compute Cloud https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/viewing_metrics_with_cloudwatch.html#ec2-cloudwatch-metrics 5 comments
- AWS IAM | Identity and Access Management | Amazon Web Services http://aws.amazon.com/iam/ 3 comments
- API Logs - Secure Standardized Logging Service - AWS CloudTrail - AWS http://aws.amazon.com/cloudtrail/ 0 comments
Would you like to stay up to date with DevOps? Checkout DevOps
Weekly.