Kennedy Torkura
@run2obtain.bsky.social
Co-Founder & CTO @ http://mitigant.io ✨ AWS Community Builder.✨Cloud Attack Emulation 🌩️
Pinned
Kennedy Torkura
@run2obtain.bsky.social
· Jan 31
💥 A New Dawn: Attack-as-Code | Attack Scheduler 🤺
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
💥 A New Dawn: Attack-as-Code | Attack Scheduler 🤺
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
January 31, 2025 at 5:47 PM
💥 A New Dawn: Attack-as-Code | Attack Scheduler 🤺
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
These new features would change your cloud security game FOREVER.
These features streamline the adoption of Continuous Threat Exposure Management, mature Detection Engineering functions & supercharge SOC teams. Details 👉 mitigant.io/en/blog/feat...
Reposted by Kennedy Torkura
I built a PoC using Amazon Bedrock to automate security questionnaires. A centralized, secure knowledge base + zero cost when idle makes it perfect for occasional use. medium.com/@adan.alvare...
DIY — Building a Cost-Effective Questionnaire Automation with Bedrock
Security questionnaires are very common today. When customers consider your product, especially if you’re a startup, they often ask for…
medium.com
January 23, 2025 at 7:20 AM
I built a PoC using Amazon Bedrock to automate security questionnaires. A centralized, secure knowledge base + zero cost when idle makes it perfect for occasional use. medium.com/@adan.alvare...
⚡ Bedrock Security: Model Invocation Logs + CloudWatch 💥
Several Bedrock events are available in Cloudtrail, but model-level events aren't.
Leverage model invocation logs to breach this visibility gap. These logs contain critical information for security auditing, abuse detection, etc
Several Bedrock events are available in Cloudtrail, but model-level events aren't.
Leverage model invocation logs to breach this visibility gap. These logs contain critical information for security auditing, abuse detection, etc
January 25, 2025 at 1:41 PM
⚡ Bedrock Security: Model Invocation Logs + CloudWatch 💥
Several Bedrock events are available in Cloudtrail, but model-level events aren't.
Leverage model invocation logs to breach this visibility gap. These logs contain critical information for security auditing, abuse detection, etc
Several Bedrock events are available in Cloudtrail, but model-level events aren't.
Leverage model invocation logs to breach this visibility gap. These logs contain critical information for security auditing, abuse detection, etc
🔍 WTF is Detection Engineering Maturity 🔎
Do you want to build a DE fxn from the ground up, or mature the fxn, or know what's up with this DE thing? 🤔
👉 Check out the Detection Engineering Maturity Matrix-> detectionengineering.io
#detectionengineering #securityoperations #cloudsecurity
Do you want to build a DE fxn from the ground up, or mature the fxn, or know what's up with this DE thing? 🤔
👉 Check out the Detection Engineering Maturity Matrix-> detectionengineering.io
#detectionengineering #securityoperations #cloudsecurity
January 16, 2025 at 10:49 AM
🔍 WTF is Detection Engineering Maturity 🔎
Do you want to build a DE fxn from the ground up, or mature the fxn, or know what's up with this DE thing? 🤔
👉 Check out the Detection Engineering Maturity Matrix-> detectionengineering.io
#detectionengineering #securityoperations #cloudsecurity
Do you want to build a DE fxn from the ground up, or mature the fxn, or know what's up with this DE thing? 🤔
👉 Check out the Detection Engineering Maturity Matrix-> detectionengineering.io
#detectionengineering #securityoperations #cloudsecurity
⚡Making Security Agile: Attack-as-Code⚡
Security validation should be easy, repeatable, consistent & versioned. Enter Attack-as-Code!
👉 Detection engineering use cases -> mitigant.io/en/blog/clou...
#RedTeam #PurpleTeam #securityoperations #awssecurity #threathunting #blueteam #threatdetection
Security validation should be easy, repeatable, consistent & versioned. Enter Attack-as-Code!
👉 Detection engineering use cases -> mitigant.io/en/blog/clou...
#RedTeam #PurpleTeam #securityoperations #awssecurity #threathunting #blueteam #threatdetection
January 9, 2025 at 1:29 PM
⚡Making Security Agile: Attack-as-Code⚡
Security validation should be easy, repeatable, consistent & versioned. Enter Attack-as-Code!
👉 Detection engineering use cases -> mitigant.io/en/blog/clou...
#RedTeam #PurpleTeam #securityoperations #awssecurity #threathunting #blueteam #threatdetection
Security validation should be easy, repeatable, consistent & versioned. Enter Attack-as-Code!
👉 Detection engineering use cases -> mitigant.io/en/blog/clou...
#RedTeam #PurpleTeam #securityoperations #awssecurity #threathunting #blueteam #threatdetection
🤺 Beyond SSRF: When SSM Agents Go Rogue 🐞
💥 Okay, we love SSM Agents! They are great tools for managing EC2 Instances at scale. However, if attackers abuse them, they could become pain points.
🤔 So what can go wrong?
Check it out -> mitigant.io/en/blog/leve...
💥 Okay, we love SSM Agents! They are great tools for managing EC2 Instances at scale. However, if attackers abuse them, they could become pain points.
🤔 So what can go wrong?
Check it out -> mitigant.io/en/blog/leve...
January 6, 2025 at 12:27 PM
🤺 Beyond SSRF: When SSM Agents Go Rogue 🐞
💥 Okay, we love SSM Agents! They are great tools for managing EC2 Instances at scale. However, if attackers abuse them, they could become pain points.
🤔 So what can go wrong?
Check it out -> mitigant.io/en/blog/leve...
💥 Okay, we love SSM Agents! They are great tools for managing EC2 Instances at scale. However, if attackers abuse them, they could become pain points.
🤔 So what can go wrong?
Check it out -> mitigant.io/en/blog/leve...