A microscopic look into what’s happening in the cluster — Introduction Wireshark is a well known tool for Packet Capture, analysis and troubleshooting. It can capture live network traffic and analyze it in real-time at a microscopic level, or read and process saved capture files. Wireshark can dissect and display many different protocols, and has a powerful filtering system for narrowing…

Cloud Resource Explorer using simple ChatOps — Need to know your cloud dependencies in a pinch? Yes, we’ve been there. Here’s how we leveraged ChatOps to make our lives easier. The Problem We’ve got cloud, and we’ve got 99 problems about what’s residing in our clouds. On most days you might have the luxury of time to unravel this…

Some of the Over Privileged AWS Managed IAM Policies — Introduction This article talks about some of the over privileged AWS Managed IAM Policies. When I say Over Privileged — its not just specific to that particular service, but also grants access to a completely different, and in some cases unrelated Service. For folks who are not really clear on what…

Exploring Steampipe as an alternative for Querying — What is Boto3? Boto3 is just the name of Python SDK for AWS. Boto3 is undoubtedly one of the most used and wonderful SDKs used to make API calls to AWS in order to configure, manage and Query AWS Resources. Why not Boto3? It really felt good to use Boto3 which makes it easier to query…

Exploring the ways of doing Perimeter Security in Cloud — The phrase Perimeter Security sounds like a domain by itself right? Well you can think of it as a separate domain altogether depending on what elements you are dealing with in Perimeter Security. What is Perimeter by the way and why do we need to Secure it? Why Perimeter Security? Perimeter in terms…

A Comprehensive Guide to understand Limits.conf file — Now we have a pretty good idea of why we should set Resource Limits after going through Fork Bomb article. If you have not read it yet, here it is — https://medium.com/kernel-space/linux-security-all-about-fork-bomb-75dd6741f060 . Fork Bomb is just one example, there is much more to limits file. We will explore all…

Silent, yet very efficient bomb. — Introduction Fork Bomb isn’t like normal bombs which make a lot of noise and create fire events. This bomb is very silent, but the consequences are quite violent. How violent the results are depends on which environment your System is running in. If it is your Production, it is time for…

Examining Transport Layer Segment in its RAW form — In the last article, we have seen how to unpack an Network Packet and finally get our Transport Layer Protocol Data Unit which is Segment. In this article we are going to further break this Data Down and look at what is inside a Segment. When it comes to Transport…

Examining Network Packet in its RAW form — In the last article, we have seen how to unpack an Ethernet Frame and finally get our Network Layer Protocol Data Unit which is Packet. In this article we are going to further break this Data Down and look at what is inside a Network Packet. In our case it…