Welcome to AWSSecurity.info

Privilege escalation risks in AWS


A privilege escalation risk is where a user account within a system has the ability to elevate their privileges to a higher level than what was originally intended. This can have disasterous consequenses, particarly if you have an insider threat. This type of risk is not limited to insiders only. Any user account with the right permissions can result in unwanted elevated permissions.

Read more

The us-east-1 outage of 2021


December 7th 2021 saw an outage in the us-east-1 region of AWS. The outage had a significant impact, not just on AWS, but for many customers all around the world.

Read more

Hosting a static website


To try and keep my hosting costs down, I decided to redevelop AWSSecurity.info and publish it as a mkdocs site, instead of Wordpress. This is allowing me to host the site on S3 with CloudFront, rather than keeping an EC2 instance active all the time.

In this post, I will share with you details on how I achieved this.

Read more

Accessing your EC2 instances securely


Cloud-native application are certainly the way to go to maximize your cloud investment, however for many organization, redeveloping their in-house applications to be cloud-native can be a daunting (and expensive) exercise. So in many cases it makes sense to lift&shift the on-prem servers to the cloud to utilize at least some of the benefits from cloud infrastructure.

Read more

Detect EC2 instances without SSM enabled


So you have a fleet of EC2 instances running, and you need to patch them with SSM. You deploy the patches, but somehow, you missed some instances. It turns out that the SSM agent is not running on all your EC2 instances. This could be a disaster.

Read more

AWS IAM Access Keys


Access keys allow you to access AWS resources from scripts and command lines. It also creates additional challenges that you need to be aware of.

Identity & Access Management


Identity & Access Management (IAM) is at the core of everything AWS does. In this video, I’ll be running through the key concepts of AWS, and demonstrating how you can securely setup an EC2 instance to interact with an S3 bucket.

The 7 Deadly Cloud Sins – Video


The 7 deadly cloud sins. Things to watch out for as you go on your cloud journey.

Using AWS Lambda + API Gateway from Javascript


If you’ve been working with AWS for a while, you’ll know that Lambda functions is where it’s at. Lambda is AWS’ server-less offering, allowing you to run code in the cloud without having to worry about infrastructure.

Read more