Add MFA to Fedora with Yubikey

Add MFA to sudo and gnome in Fedora using a Yubikey and authselect

May 3, 2021 · 3 min · Me

Grabbag

RMS, Dan Kaminsky, FLoCS, Fedora

May 1, 2021 · 3 min · Me

Use AWS Config To Hunt Public S3 Buckets

This post covers using AWS Config as a starting point to find public s3 buckets in your organization.

November 2, 2020 · 2 min · Me

Set Security Headers using Cloudflare Workers

This article covers previous work and introduces a warning

October 9, 2020 · 2 min · Me

Find Resources With AWS Config

Use AWS Config to locate AWS resources

August 12, 2020 · 3 min · Me

How to Securely Configure CloudFlare with S3

This post covers how to secure an S3 bucket serving content through Cloudflare

April 17, 2020 · 4 min · Me

Site Update: Cloudflare

This site now uses CloudFlare

April 16, 2020 · 2 min · Me

AWS Cloudwatch

AWS CloudWatch enables monitoring and alerting on cloud events.

April 3, 2020 · 4 min · Me

AWS Security Hub

AWS Security Hub eases the pain of cloud monitoring

February 21, 2020 · 4 min · Me

Protect AWS API Gateway with AWS WAF

Help protect APIGW from attackers with AWS WAF

January 31, 2020 · 5 min · Me

AWS CloudTrail

AWS CloudTrail is the cornerstone of cloud SECOPS

January 30, 2020 · 3 min · Me

Public Bug Bounty Rules of Engagement

I share my experience and lessons learned from operating a public bug bounty.

April 9, 2019 · 2 min · Me

Extract files from network capture

Extract files from tcpdump or wireshark captures

January 24, 2019 · 2 min · Me

Decrypting Java TLS to View in Wireshark

Use this to recover TLS session keys for a java program.

October 26, 2018 · 1 min · Me

Mallory in the Mobile

Use mallory proxy to view non-https encrypted mobile traffic

October 15, 2018 · 8 min · Me