EpochZero Learn
EpochZero LearnMulti-Domain Tech Learning Hub
Courses
LeaderboardAbout
Dashboard
EpochZero
EpochZero Learn
Multi-Domain Tech Learning Hub

Structured learning for Reverse Engineering, Cloud Security, Cryptography, and Web Development. Articles, videos, tests, and peer discussion.

Learn

  • Learning Path
  • All Articles
  • Video Lessons
  • Podcast
  • eBooks & PDFs
  • Question Banks
  • Cheatsheets
  • MCQ Banks

Tests & Forum

  • All Tests
  • REMA Tests
  • Cloud Tests
  • Forum
  • REMA Forum
  • Cloud Forum
  • Crypto Forum
  • Web Dev Forum

Campus

  • REMA Club
  • Full Stack Dev Club
  • Extension Activity
  • Events
  • CTF Competitions
  • Workshops
  • Industrial Visits

Platform

  • Dashboard
  • Leaderboard
  • About
  • Verify Certificate

© 2026 EpochZero Learn. Educational content for learning purposes.

Course Instructor: Ashish Revar

Lab notebook

Articles & writeups

In-depth analyses of malware samples, technique deep-dives, and lab notes from the field. Long-form, technical, no fluff.

All articlesAnalyst PracticeEducationMalware Deliverycloud-securitymalware-analysisresearch-methodology

54 articles in "cloud-security" — page 1 of 6

cloud-security

Chain of Custody & Evidence Preservation in Cloud Forensics

Chain of custody documents the complete history of evidence — who collected it, how it was stored, and who had access. In cloud forensics, where evidence is API-sourced and inherently mutable, maintaining an unbroken chain requires specific technical and procedural controls.

3 July 202618 min
Read →
cloud-security

Cloud Forensic Tools: Amazon Athena, Splunk & OpenSearch Investigations

Cloud-scale forensics requires tools capable of querying billions of log events in minutes. Amazon Athena, Splunk, and OpenSearch each provide this capability with different trade-offs. This article covers practical query patterns for forensic investigation.

3 July 202620 min
Read →
cloud-security

Volatile Evidence Acquisition in Cloud Environments

Volatile data — running processes, network connections, memory contents, and instance metadata — disappears when an EC2 instance is terminated. Cloud forensics must capture this evidence before auto-scaling or incident remediation destroys it.

3 July 202618 min
Read →
cloud-security

Malware Analysis & Sandboxing in Cloud Environments

Cloud infrastructure is both a target for malware and an ideal platform for malware analysis. This article covers cloud-hosted malware sandbox architectures, static and dynamic analysis of cloud-delivered malware, and detecting malware in container images and Lambda packages.

3 July 202620 min
Read →
cloud-security

Cloud Forensics Legal Framework & Expert Witness Reports

Cloud forensic evidence must satisfy the legal admissibility standards of the jurisdiction in which it will be used. This article covers the Indian legal framework for digital evidence, the structure of a forensic report, expert witness obligations, and the BSA 2023 Section 63 certificate.

3 July 202620 min
Read →
cloud-security

SIEM, SOAR & Security Orchestration in Cloud Environments

A Security Information and Event Management (SIEM) system aggregates logs from all cloud sources for correlation and threat detection. SOAR (Security Orchestration, Automation, and Response) automates the playbook execution when threats are detected. This article covers both in the cloud context.

3 July 202618 min
Read →
cloud-security

OpenStack Private Cloud Security Architecture

OpenStack is the open-source cloud platform underlying NIC MeghRaj (India's National Cloud) and many large enterprise private clouds. Understanding its component security model is essential for government and large-enterprise cloud security practitioners in India.

3 July 202618 min
Read →
cloud-security

Serverless Security & Function Isolation Models

Serverless platforms like AWS Lambda, Azure Functions, and Google Cloud Functions abstract the infrastructure entirely — but they do not abstract the security. This article examines the unique attack surface, isolation model, and security controls for serverless workloads.

3 July 202618 min
Read →
cloud-security

Cloud Incident Response Playbooks & Runbooks

Cloud incident response differs from traditional IR in critical ways — cloud resources are ephemeral, attacker actions are API calls, and evidence is in managed logs. This article describes the cloud IR lifecycle, core playbooks for common scenarios, and CERT-In reporting obligations.

3 July 202620 min
Read →
Prev123...6Next