Maxime Coquerel
@zigmax.bsky.social
Cloud Security Geek ! | #CNCF Ambassador | Microsoft #MVP #Azure & #Security | Cloud Security Vulnerability Research | #AI #CloudSecurity #Kubernetes #SecOps
Blog: zigmax.net
Blog: zigmax.net
What a ride at #CloudNativeRejekts NA 2025 in Atlanta! ⚡
Deep-tech talks, AI breakthroughs, and hardcore #Kubernetes security insights, all powered by an incredible community.
Full recap 👉 zigmax.net/cloud-native-r…
Next stop#KubeConon �#CloudNativev#CloudSecurityty
https://zigmax.net/cloud-native-r…
November 9, 2025 at 11:19 PM
What a ride at #CloudNativeRejekts NA 2025 in Atlanta! ⚡
Deep-tech talks, AI breakthroughs, and hardcore #Kubernetes security insights, all powered by an incredible community.
Full recap 👉 zigmax.net/cloud-native-r…
Next stop#KubeConon �#CloudNativev#CloudSecurityty
On my way to #KubeCon + #CloudNativeCon North America! 🛫
November 7, 2025 at 2:27 PM
On my way to #KubeCon + #CloudNativeCon North America! 🛫
Reposted by Maxime Coquerel
3 WEEKS AWAY! 🚀
Cloud Native @rejekts.io is the essential FREE, in-person event on Nov 8 in Atlanta, GA. Explore hidden technical gems that you won't want to miss.
Get your free ticket ➡️ cloud-native.rejekts.io
Cloud Native @rejekts.io is the essential FREE, in-person event on Nov 8 in Atlanta, GA. Explore hidden technical gems that you won't want to miss.
Get your free ticket ➡️ cloud-native.rejekts.io
October 18, 2025 at 7:12 PM
3 WEEKS AWAY! 🚀
Cloud Native @rejekts.io is the essential FREE, in-person event on Nov 8 in Atlanta, GA. Explore hidden technical gems that you won't want to miss.
Get your free ticket ➡️ cloud-native.rejekts.io
Cloud Native @rejekts.io is the essential FREE, in-person event on Nov 8 in Atlanta, GA. Explore hidden technical gems that you won't want to miss.
Get your free ticket ➡️ cloud-native.rejekts.io
Reposted by Maxime Coquerel
Orbit is a CLI tool that unifies the discovery of and access to the managed #Kubernetes clusters across different cloud providers (AWS EKS, Azure AKS, and Google GKE). It adds newly discovered clusters to your existing kubeconfig.
gitlab.com/RMJx1/orbit
// Source: #Kubernative Telegram channel
gitlab.com/RMJx1/orbit
// Source: #Kubernative Telegram channel
October 16, 2025 at 1:45 PM
Orbit is a CLI tool that unifies the discovery of and access to the managed #Kubernetes clusters across different cloud providers (AWS EKS, Azure AKS, and Google GKE). It adds newly discovered clusters to your existing kubeconfig.
gitlab.com/RMJx1/orbit
// Source: #Kubernative Telegram channel
gitlab.com/RMJx1/orbit
// Source: #Kubernative Telegram channel
Reposted by Maxime Coquerel
KyvernoCon is here! 🎉
An inaugural event for the #policyascode community, co-located with #KubeCon + #CloudNativeCon NA 2025.
Connect with contributors, hear real-world stories, and see how Kyverno is scaling beyond Kubernetes.
🛠️ Join us → www.cncf.io/blog/2025/09...
#Kyverno #CNCF #CloudNative
An inaugural event for the #policyascode community, co-located with #KubeCon + #CloudNativeCon NA 2025.
Connect with contributors, hear real-world stories, and see how Kyverno is scaling beyond Kubernetes.
🛠️ Join us → www.cncf.io/blog/2025/09...
#Kyverno #CNCF #CloudNative
KubeCon + CloudNativeCon North America 2025 Co-Located Event Deep Dive: KyvernoCon
This is the very first KyvernoCon! While Kyverno has been part of the CNCF since November 2020, and has had a strong presence at past KubeCon events through policy as code focused talks…
www.cncf.io
September 18, 2025 at 9:22 PM
KyvernoCon is here! 🎉
An inaugural event for the #policyascode community, co-located with #KubeCon + #CloudNativeCon NA 2025.
Connect with contributors, hear real-world stories, and see how Kyverno is scaling beyond Kubernetes.
🛠️ Join us → www.cncf.io/blog/2025/09...
#Kyverno #CNCF #CloudNative
An inaugural event for the #policyascode community, co-located with #KubeCon + #CloudNativeCon NA 2025.
Connect with contributors, hear real-world stories, and see how Kyverno is scaling beyond Kubernetes.
🛠️ Join us → www.cncf.io/blog/2025/09...
#Kyverno #CNCF #CloudNative
Excited to join #BSidesMontreal today!
September 13, 2025 at 1:06 PM
Excited to join #BSidesMontreal today!
#Kubernetes Escape Room partyrock.aws/u/bernardoor...
Kubernetes Escape Room
Kubernetes Escape Room: A tool that analyzes Kubernetes Pod manifests to identify potential container escape vulnerabilities and provides security recommendations for mitigation.
partyrock.aws
September 10, 2025 at 12:02 AM
#Kubernetes Escape Room partyrock.aws/u/bernardoor...
Reposted by Maxime Coquerel
Ever thought of using S3 server access logs for data exfiltration? If you control an IAM identity with `s3:GetObject`, you could receive log details including denied requests alongside the data you aim to exfiltrate. It's a unique take on cloud security worth exploring. Learn more:
Data Exfiltration through S3 Server Access Logs - Hacking The Cloud
Exfiltrate data via S3:GetObject and S3 server access logs.
buff.ly
September 4, 2025 at 2:03 PM
Ever thought of using S3 server access logs for data exfiltration? If you control an IAM identity with `s3:GetObject`, you could receive log details including denied requests alongside the data you aim to exfiltrate. It's a unique take on cloud security worth exploring. Learn more:
Breaking Boundaries - Kubernetes Namespaces and multi-tenacy blog.amberwolf.com/blog/2025/se... #cloudsecurity #kubernetessecurity
Breaking Boundaries - Kubernetes Namespaces and multi-tenancy
AmberWolf Security Research Blog
blog.amberwolf.com
September 1, 2025 at 11:35 AM
Breaking Boundaries - Kubernetes Namespaces and multi-tenacy blog.amberwolf.com/blog/2025/se... #cloudsecurity #kubernetessecurity
Backdoor on s3 policy #cloudsecurity medium.com/@akarshad428...
Backdoor on S3 using bucket policy
While exploring the labs provided by Cybr, I came across one focused on Backdoor execution on S3 — Backdooring an S3 Bucket via its Bucket…
medium.com
August 23, 2025 at 7:31 AM
Backdoor on s3 policy #cloudsecurity medium.com/@akarshad428...
Reposted by Maxime Coquerel
Want more Platform Engineering content? Our friends @kubecrash.bsky.social are hosting a free, virtual conference on Tuesday, September 23rd! Get practical insights from speakers like Dima Shevchuk (Grammarly) & Lisa Shissler Smith (formerly Netflix).
Register now: kubecrash.io
Register now: kubecrash.io
August 19, 2025 at 1:26 PM
Want more Platform Engineering content? Our friends @kubecrash.bsky.social are hosting a free, virtual conference on Tuesday, September 23rd! Get practical insights from speakers like Dima Shevchuk (Grammarly) & Lisa Shissler Smith (formerly Netflix).
Register now: kubecrash.io
Register now: kubecrash.io
ATEAM: Azure Tenant Enumeration and Attribution Module #cloudsecurity github.com/NetSPI/ATEAM
GitHub - NetSPI/ATEAM
Contribute to NetSPI/ATEAM development by creating an account on GitHub.
github.com
August 17, 2025 at 6:50 AM
ATEAM: Azure Tenant Enumeration and Attribution Module #cloudsecurity github.com/NetSPI/ATEAM
Reposted by Maxime Coquerel
Want to help make Kubernetes better? If you run multiple clusters, the community would like to learn from you! Check out the survey!
Do you run multi-cluster Kubernetes setups? Open Source Kubernetes is building a tool for multi-cluster management and monitoring- and we'd love your feedback! Check it out here and share your experiences in this survey! docs.google.com/forms/d/e/1F...
User feedback Survey: Building Multi cluster Management and Monitoring tool.
Thank you for taking the time to participate in this survey! The Kubernetes SIG Multi cluster UX Working Group is conducting a survey to gather insights from users, operators, and developers on how…
docs.google.com
August 12, 2025 at 2:44 PM
Want to help make Kubernetes better? If you run multiple clusters, the community would like to learn from you! Check out the survey!
Reposted by Maxime Coquerel
Explore how misusing EC2 user data can lead to privilege escalation. If you have `ec2:ModifyInstanceAttribute` permissions, you can execute custom scripts as root on EC2 instances. This involves modifying user data and leveraging cloud-init to execute scripts at boot. Details here:
EC2 Privilege Escalation Through User Data - Hacking The Cloud
How to escalate privileges on an EC2 instance by abusing user data.
buff.ly
August 7, 2025 at 2:04 PM
Explore how misusing EC2 user data can lead to privilege escalation. If you have `ec2:ModifyInstanceAttribute` permissions, you can execute custom scripts as root on EC2 instances. This involves modifying user data and leveraging cloud-init to execute scripts at boot. Details here:
Kubectl-explorer github.com/keisku/kubec...
GitHub - keisku/kubectl-explore: A better kubectl explain with the fuzzy finder
A better kubectl explain with the fuzzy finder. Contribute to keisku/kubectl-explore development by creating an account on GitHub.
github.com
August 5, 2025 at 9:21 PM
Kubectl-explorer github.com/keisku/kubec...
Reposted by Maxime Coquerel
📣We're excited to announce that #Rejekts will take place on Nov. 8 as a one-day event before KubeCon Atlanta🌆
📜CFP is now open👉🏽 tinyurl.com/e6bkfpd8
🔔We look forward to receiving your rejekted proposals until 11th Aug 23:59 PM ET!
📜CFP is now open👉🏽 tinyurl.com/e6bkfpd8
🔔We look forward to receiving your rejekted proposals until 11th Aug 23:59 PM ET!
Cloud Native Rejekts NA (Atlanta) 2025
Schedule, talks and talk submissions for Cloud Native Rejekts NA (Atlanta) 2025
tinyurl.com
July 28, 2025 at 12:40 PM
📣We're excited to announce that #Rejekts will take place on Nov. 8 as a one-day event before KubeCon Atlanta🌆
📜CFP is now open👉🏽 tinyurl.com/e6bkfpd8
🔔We look forward to receiving your rejekted proposals until 11th Aug 23:59 PM ET!
📜CFP is now open👉🏽 tinyurl.com/e6bkfpd8
🔔We look forward to receiving your rejekted proposals until 11th Aug 23:59 PM ET!