My InfoSec Ramblings

Wednesday, August 18, 2021

Core-value anti-patterns

When I make decisions at work, I am mentally programmed and in many/most cases try to find the core value that this step mapped to - from a ...

Tuesday, June 1, 2021

Exploring JWT refresh tokens

So JWTs are a very common stateless authentication token that are generated server side, and sent to a client. Every request that the client...

Monday, September 14, 2020

Red to blue team switch

I switched from being a penetration tester after nearly 7 years at Security Innovation to a security engineer at 98point6, an exciting healt...

Friday, February 21, 2020

IAM Least Privilege Permissions

There are multiple parts to writing IAM least privilege policies. This document attempts to touch on the best ways to do each of these ta...

Monday, November 25, 2019

Anatomy of a check scam

I was walking home on a Saturday afternoon across a shopping center which has a Bank of America branch (where I have an account)....

Saturday, June 1, 2019

AWS - Security, Identity and Compliance

This blog defines a number of services that are relevant to AWS security. It is recommended that you know all these services as well as pos...

Friday, May 24, 2019

AWS - Networking Services

VPC: This is the DMZ/Vlan/Segmentation equivalent for the cloud. You can create a VPC, create subnets inside the VPC and then assign EC2...

Thursday, May 23, 2019

AWS - Migration Services

Application Discovery Service: This one's to find out what offline servers you have and make a list of all that to then display them i...

Tuesday, May 21, 2019

AWS - Database Services

RDS: AWS's relational database system which is basically hosting MySQL, PostGres, MSSQL, Oracle, Amazon's own AuroraDB and MariaD...

AWS - Storage Services

S3: This is arguably (along with EC2) the most popular service that AWS offers. In short it allows users to store their files in it - beha...

Thursday, May 16, 2019

AWS - Compute - Container Services

Here is an image from the Docker website that describes how containers work. Teams are increasingly building their workflows around Doc...

Tuesday, May 14, 2019

AWS - Compute Services

This blog summarizes some of the AWS Compute services. I deliberately do not cover the ones that deal with containers, as I plan to blog se...

Tuesday, November 13, 2018

Content Security Policy - Quick Reference

This is a post to help me remember the various parts of CSP. The w3 specification for CSP is very readable - this is NOT a replacement for ...

Thursday, October 4, 2018

SSH certificate authentication

tl;dr: * You can configure client-side and server-side authentication using SSH certificates with the existing openssh daemon. * You nev...

Tuesday, September 18, 2018

AWS - Developer Tools

This post summarizes the AWS services that are used to help you write code and reliably build, test and deploy it faster that things would ...

View web version

About Me

Arvind: I like to enjoy whatever I do. I like to solve problems, technical, organizational.. well just about any kind. I try my best to ensure that I don't leave anything half done, and I've done all I can to fix something.

View my complete profile

Powered by Blogger.