Wazuh provides basic email notifications and can be “hacked” to send emails to an SMS Gateway, but the alerts will tend to be longer than…
And at the end of your journey through the Prowler and CIS benchmarks, we come to the Communal Standards (GASSP), where we find it is…
With all the discussion of Prower, CIS Benchmarks, and Wazuh, it seems we need to have a way to retrieve all the current AWS services…
Suffering from “Systems Autism,” I tend to automate everything I can; at least that way, I can make the same mistake multiple times, mainly if…
During a recent dinner with one of my contemporaries, I was introduced to Wazuh, pronounced Wazoo. And in a prior post, AWS EVENT MONITORING, “IN…
As spoken prior in PROWLING WITH S.A.F.H. (OR THE HANGOVER.) Prowler is heavily based on the CIS benchmarks for AWS. Those benchmarks are broken into a series…
It is raining data with Cloudtrails, VPC Flowlogs, GuardDuty, Inspector, and all the container logs; we need a bucket to catch it. So I speak,…
As spoken prior in PROWLING WITH S.A.F.H. (OR THE HANGOVER.) Prowler is heavily based on the CIS benchmarks for AWS. Those benchmarks are broken into a series…
I recently had dinner with an old friend and partner in chaos; we are security practitioners and face some of the same challenges. During our…
As spoken prior in PROWLING WITH S.A.F.H. (OR THE HANGOVER.) Prowler is heavily based on the CIS benchmarks for AWS. Those benchmarks are broken into…