CIS Benchmark for server hardening for Centos/RHEL/Ubuntu systems (Puppet)
Cyber security is becoming more and more important and securing your server with automation allows us to save a lot of time and respect best practices
Grafana in ECS Fargate with Aurora Serverless deployed with Terraform Cloud
Today let's see how deploy Grafana in ECS with Terraform Cloud
Install and configure Lsync service to synchronize paths between servers (deployed by puppet)
We can configure Lsync service for synchronize paths between servers (deployed by puppet)
Use Lambda Edge to insert /index.html at the end of the URLs of a static site distributed by Cloudfront
Today we will see how we can use the Lambda Edge to insert "/index.html" at the end of the URLs of a static site distributed by Cloudfront
RTCP Trivia Android Reverse Engineering
This blogpost is related to a nice Android reverse engineering challenge: RTCP TRIVIA. The challenge description was: "We now have our very own trivia app! Solve 1000 questions and win a flag!". Ok, try to do it 😉.
Install httpd (Apache) in CentOS with Application Load Balancer
Today we see as install Apache in CentOS and configure ALB with HTTPS certificate
Connecting to a Private API Gateway over VPN (On-premise)
When you create a private gateway API, you can contact it through the DNS name, but it is resolves only in your VPC with a VPC Endpoint with Private DNS enabled.
The Dark Side of you screen
2020 is the year of dark screen and many applications have this new feature (natively or with third party tools). So we will see how convert our screen to the dark side.
EC2 policy to manage volumes attached to instances (also not) and to create snapshots with only determinate AWS tags
Inside AWS account there is the possibility to delegate the control of volume to external consulant. If you don’t want people to manage resources that don’t belong to them, you need to use an EC2 policies for limit their control.
How to host a static Website with Cloudfront, bucket s3 and Certificate Manager in AWS by Terraform
In this article we use Terraform for create automaticaly a Cloudfront, bucket S3 not public (Origin Access Identity) and a Certificate Manager for validate the static website.
Bronze Ropchain
Broze ropchain is a simple pwn challenge with a 32 bit binary. The first step is to check the protection of the binary with checksec util:
SRNR
Srnr is a binary exploitation challenge of redpwn ctf. Running checksec, we can see that there are only Full RELRO and NX protections, but any canary value.
Import Paramiko to AWS Lambda
Today let's see how to import the paramiko library into AWS Lambda with this errors: from_buffer() cannot return the address of the raw string within a str or unicode or bytearray object and unable to import function etc
EC2 instance assume Role to use AWS VM Import
Today we see as use a our instance to import a virtual image in AWS by VM Import
Schedule Step Functions with CloudWatch – AWS – Part 4
How to schedule the Step Function execution by CloudWatch
Send email in Lambda with Python, Boto3 by Step Functions – AWS – Part 3
How we send an email if we get an error in a Lambda function by Step Function?