Lab notebook
In-depth analyses of malware samples, technique deep-dives, and lab notes from the field. Long-form, technical, no fluff.
54 articles in "cloud-security" — page 5 of 6
How container isolation actually works (and where it breaks), image security with Trivy and Cosign, runtime security with Falco, the 4Cs of cloud-native security, and the Kubernetes-specific risks that appear in every cluster audit.
Internal vs external cloud audits, the concept of continuous auditing, and a practitioner guide to SEBI CSCRF 2024, CERT-In 2022, DPDP Act 2023, and RBI IT Framework — the four Indian regulations that shape every cloud deployment in the financial sector.
NIST SP 800-145, NIST CSF 2.0, and ENISA cloud security guidance — compared side-by-side, with the Capital One 2019 breach as a case study in how framework application prevents real-world cloud disasters.
How cloud IAM works at the level of subjects, actions, resources, and conditions — comparing RBAC, ABAC, and JIT access — and the access control mistakes that appear in almost every cloud audit.
Three techniques for protecting sensitive data in cloud environments — when to redact, when to tokenize, and when to obfuscate — with honest assessments of the limits of each approach.
How the certificate trust hierarchy works, the complete PKI lifecycle from issuance to revocation, cloud-native PKI services, and the key management practices that determine whether your encryption controls actually hold.
Symmetric vs. asymmetric encryption, AES operating modes in cloud platforms, envelope encryption as the cloud standard, encrypting data across all three states, and the post-quantum cryptographic standards NIST finalised in 2024.
How cloud pentesting differs from traditional network penetration testing, the six-phase cloud pentest methodology, the five patterns found in almost every cloud engagement, and how to structure a cloud pentest report.
The five tool categories that form the cloud security toolchain — what each does, where it sits in the stack, and which open-source tools you can use to build a capable security programme without enterprise budget.