"The Cloud Security Reading List" is a low volume mailing list (once per week) that highlights security-related news focused on the cloud native landscape, hand curated by Marco Lancini.
Knowing how difficult it is to stay up to date with all the different news and releases occurring in this industry, I hope this will be helpful for other people who are particularly interested in this corner of the security scenario.
This week's articles
- Trivy > A Simple and Comprehensive Vulnerability Scanner for Containers, Suitable for CI. Interesting to see the comparison table.
-
Cloud Container Attack Tool (CCAT) > A tool for testing security of container environments (ECS, EKS, and ECR).
-
AWS Service Operator > Allows to manage AWS resources using Kubernetes Custom Resource Definitions.
-
Making containers safer > A presentation on the current state and the future of container security.
-
Google Safeside > Engineered demos of Spectre, Meltdown, and any other SW side-channel vulnerabilities. Make them repeatable and understandable. But not weaponized.
|
|
|
|
