Our great sponsors
-
kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
packj
Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
-
chainalert-github-action
scans popular packages and alerts in cases there is suspicion of an account takeover
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
Telegrip
Telegrip is a digital forensic tool that provides acquistion and analysis for Telegram-related cases.
Kubesploit
Kdigger
This CLI tool is similar to the first one, but also recommended as it keeps adding improvements. To present the features, the demo shows a minik8s-ctf environment. It is really great to test and implement the new features.
ThunderCloud
In Supply Chain Attacks, three tools were presented. Dependency Combobulator detects dependency confusion using heuristics; for example, if the repository is public or time since last change. Similar to packj but in this case, it implements metadata (if the repository activates 2FA) or typosquatting detection, finding packages with similar names to avoid errors. ChainAlert focuses on automation and detection of dependency commitment using the difference of tags between Github and NPM, but detection is very low.
In Supply Chain Attacks, three tools were presented. Dependency Combobulator detects dependency confusion using heuristics; for example, if the repository is public or time since last change. Similar to packj but in this case, it implements metadata (if the repository activates 2FA) or typosquatting detection, finding packages with similar names to avoid errors. ChainAlert focuses on automation and detection of dependency commitment using the difference of tags between Github and NPM, but detection is very low.
In Supply Chain Attacks, three tools were presented. Dependency Combobulator detects dependency confusion using heuristics; for example, if the repository is public or time since last change. Similar to packj but in this case, it implements metadata (if the repository activates 2FA) or typosquatting detection, finding packages with similar names to avoid errors. ChainAlert focuses on automation and detection of dependency commitment using the difference of tags between Github and NPM, but detection is very low.
Pwnppeteer is an offensive tool to manage the phishing attacks with lambda functions to automate the process
Telegrip assists in obtaining evidence from telegrams for android devices with an autopsy-like UI, a great forensic tool.
Related posts
- Introduction to the Kubernetes ecosystem
- Cisco to Acquire Cloud Native Networking and Security Leader Isovalent
- An opinionated template for deploying a single k3s cluster with Ansible backed by Flux, SOPS, GitHub Actions, Renovate, Cilium, Cloudflare and more!
- Route Pod-Traffic Through WireGuard w/ Cilium
- The StackRox Kubernetes Security Platform is now open source