Kennedy Torkura
@run2obtain.bsky.social
Co-Founder & CTO @ http://mitigant.io ✨ AWS Community Builder.✨Cloud Attack Emulation 🌩️
💥 A New Dawn: Attack-as-Code | Attack Scheduler 🤺
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
January 31, 2025 at 5:47 PM
💥 A New Dawn: Attack-as-Code | Attack Scheduler 🤺
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
⚡ Bedrock Security: Model Invocation Logs + CloudWatch 💥
Several Bedrock events are available in Cloudtrail, but model-level events aren't.
Leverage model invocation logs to breach this visibility gap. These logs contain critical information for security auditing, abuse detection, etc
Several Bedrock events are available in Cloudtrail, but model-level events aren't.
Leverage model invocation logs to breach this visibility gap. These logs contain critical information for security auditing, abuse detection, etc
January 25, 2025 at 1:41 PM
⚡ Bedrock Security: Model Invocation Logs + CloudWatch 💥
Several Bedrock events are available in Cloudtrail, but model-level events aren't.
Leverage model invocation logs to breach this visibility gap. These logs contain critical information for security auditing, abuse detection, etc
Several Bedrock events are available in Cloudtrail, but model-level events aren't.
Leverage model invocation logs to breach this visibility gap. These logs contain critical information for security auditing, abuse detection, etc
🔍 WTF is Detection Engineering Maturity 🔎
Do you want to build a DE fxn from the ground up, or mature the fxn, or know what's up with this DE thing? 🤔
👉 Check out the Detection Engineering Maturity Matrix-> detectionengineering.io
#detectionengineering #securityoperations #cloudsecurity
Do you want to build a DE fxn from the ground up, or mature the fxn, or know what's up with this DE thing? 🤔
👉 Check out the Detection Engineering Maturity Matrix-> detectionengineering.io
#detectionengineering #securityoperations #cloudsecurity
January 16, 2025 at 10:49 AM
🔍 WTF is Detection Engineering Maturity 🔎
Do you want to build a DE fxn from the ground up, or mature the fxn, or know what's up with this DE thing? 🤔
👉 Check out the Detection Engineering Maturity Matrix-> detectionengineering.io
#detectionengineering #securityoperations #cloudsecurity
Do you want to build a DE fxn from the ground up, or mature the fxn, or know what's up with this DE thing? 🤔
👉 Check out the Detection Engineering Maturity Matrix-> detectionengineering.io
#detectionengineering #securityoperations #cloudsecurity
⚡Making Security Agile: Attack-as-Code⚡
Security validation should be easy, repeatable, consistent & versioned. Enter Attack-as-Code!
👉 Detection engineering use cases -> mitigant.io/en/blog/clou...
#RedTeam #PurpleTeam #securityoperations #awssecurity #threathunting #blueteam #threatdetection
Security validation should be easy, repeatable, consistent & versioned. Enter Attack-as-Code!
👉 Detection engineering use cases -> mitigant.io/en/blog/clou...
#RedTeam #PurpleTeam #securityoperations #awssecurity #threathunting #blueteam #threatdetection
January 9, 2025 at 1:29 PM
⚡Making Security Agile: Attack-as-Code⚡
Security validation should be easy, repeatable, consistent & versioned. Enter Attack-as-Code!
👉 Detection engineering use cases -> mitigant.io/en/blog/clou...
#RedTeam #PurpleTeam #securityoperations #awssecurity #threathunting #blueteam #threatdetection
Security validation should be easy, repeatable, consistent & versioned. Enter Attack-as-Code!
👉 Detection engineering use cases -> mitigant.io/en/blog/clou...
#RedTeam #PurpleTeam #securityoperations #awssecurity #threathunting #blueteam #threatdetection
🤺 Beyond SSRF: When SSM Agents Go Rogue 🐞
💥 Okay, we love SSM Agents! They are great tools for managing EC2 Instances at scale. However, if attackers abuse them, they could become pain points.
🤔 So what can go wrong?
Check it out -> mitigant.io/en/blog/leve...
💥 Okay, we love SSM Agents! They are great tools for managing EC2 Instances at scale. However, if attackers abuse them, they could become pain points.
🤔 So what can go wrong?
Check it out -> mitigant.io/en/blog/leve...
January 6, 2025 at 12:27 PM
🤺 Beyond SSRF: When SSM Agents Go Rogue 🐞
💥 Okay, we love SSM Agents! They are great tools for managing EC2 Instances at scale. However, if attackers abuse them, they could become pain points.
🤔 So what can go wrong?
Check it out -> mitigant.io/en/blog/leve...
💥 Okay, we love SSM Agents! They are great tools for managing EC2 Instances at scale. However, if attackers abuse them, they could become pain points.
🤔 So what can go wrong?
Check it out -> mitigant.io/en/blog/leve...