Paweł KusińskiinSecuRingSetting up your AWS Monitoring — Security tipsThis article contains good practices of AWS Monitoring and Alerting configuration. We also showed a few real-world evasion techniques.Mar 7, 2022Mar 7, 2022
Paweł KusińskiinSecuRingTop 7 AWS security vulnerabilities based on real-world testsIn our security tests and reviews of the AWS infrastructure , we often come across repeated oversights. Here are the most common ones.Aug 19, 20213Aug 19, 20213
Paweł KusińskiBuggy Doggo CTF — Python memory leak FTW!BugPoc together with @NahamSec launched a CTF. AWS, crypto, obfuscation, path traversal — read how I combined them into a memory leak!May 4, 2021May 4, 2021
Paweł KusińskiinSecuRingWhat can you find in 57K AWS S3 buckets? 2021 updateCloud infrastructure is becoming a standard, but correct access settings still do not seem so obvious. See how we managed to make use of…Apr 29, 2021Apr 29, 2021
Paweł KusińskiHacking AWS: HackerOne & AWS CTF 2021 writeupLast week between 5 and 12 April HackerOne organised a CTF together with AWS — and it was a brilliant experience! See how I solved this!Apr 18, 2021Apr 18, 2021