Goody's Projects
A list of useful Detection Engineering-related resources.
This lab demonstrates how the Stratus Red Team Tool by DataDog is used to simulate real-world attacks on an AWS environment and how Amazon Athenaโs SQL is utilized to analyze CloudTrail logs for signs of these APT activities. Finally, the simulated attacks are mapped to the MITRE ATT&CK Cloud Matrix to identify detections of cloud-based threats.
๐ Amazon Web Services โ a practical guide
At the end of this Guided hands-on blog, you should be able to Install pacu and examine IAM policies via AWS CLI, identify users with excessive permissions, and understand how threat actors can leverage Privilege Escalation techniques using pacu cloud pretesting tool.
The repository contains cloud security walkthrough for both AWS and GCP.
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
This Project is a Final Year Project on Detection of Phishing Website Using Machine Learning
My awesome codebase
Welcome to the "Flaws in Cloud Challenge" walkthrough, where we will explore common mistakes and pitfalls when utilizing Amazon Web Services (AWS).
The "flaws 2 challenge" is a game designed by Summit Route that teaches Amazon Web Services (AWS) security concepts
Random code for HashiCorp related projects, training, etc.
A Final Year Webapp Project on Detection of Phishing Website Using Machine Learning
This lab write-up credits SANS for the Workshop on Building Detections in AWS. It replicates the workshop guide by the Cloud Security SANS Team
Skills and career roadmap for various security roles like appsec, cloud security, devsecops, security engineer, security researchers, pentesting, api security, network security, mobile security and so on.with helpful resources, guidelines
Example Sentinel Policies for use with Terraform Cloud and Terraform Enterprise
This project aims to guide you in enhancing threat detection within your AWS environment by exploring the anatomy of CloudTrail Events. It demonstrate how to leverage Amazon Athena service for identifying unusual patterns, detecting potential security threats, and ensuring compliance.
This project showcases vulnerable cloud file storage on AWS S3, aiming to help developers and cloud security engineers understand security flaws when building web apps allowing file uploads to Amazon S3.