What do you do when Nix isn't worth the time? by 0xCBE in c/[email protected]
[-] [email protected] 2 points 1 year ago

You build a derivation yourself... which I never do. I am on mac so I brew install and orchestrate brew from home manager. I find it works good as a compromise.

8
A framework to securely use LLMs in companies - Part 1: Overview of Risks (boringappsec.substack.com)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink
4
Bad.Build: A Critical Privilege Escalation Design Flaw in Google Cloud Build Enables a Supply Chain Attack (orca.security)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink
7
Impact of remote-code execution vulnerability in LangChain (ntietz.com)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink
9
PoisonGPT: How we hid a lobotomized LLM on Hugging Face to spread fake news (blog.mithrilsecurity.io)
submitted 1 year ago by [email protected] to c/[email protected]
1 comments fedilink
1
ALFA: Automated Audit Log Forensic Analysis for Google Workspace (github.com)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink

cross-posted from: https://infosec.pub/post/397812

Automated Audit Log Forensic Analysis (ALFA) for Google Workspace is a tool to acquire all Google Workspace audit logs and perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework.

By Greg Charitonos and BertJanCyber

1
Prompt Injection Attacks and Mitigations (rez0.blog)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink
1
Building Chainguard's container image registry (www.chainguard.dev)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink

We’ve made a few changes to the way we host and distribute our Images over the last year to increase security, give ourselves more control over the distribution, and most importantly to keep our costs under control [...]

1
Kubernetes Security Basics Series Part I - Deployment and Container Orchestration (ksoc.com)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink

This first post in a 9-part series on Kubernetes Security basics focuses on DevOps culture, container-related threats and how to enable the integration of security into the heart of DevOps.

2
Kubernetes Grey Zone: Risks in Managed Cluster Middleware (www.wiz.io)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink
1
My AWS Pentest Methodology (medium.com)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink
3
JWT authentication bypass via X-HTTP-Method-Override header (github.com)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink
1
Microsoft says early June disruptions to Outlook, cloud platform, were cyberattacks (apnews.com)
submitted 1 year ago by [email protected] to c/[email protected]
0 comments fedilink
welcome by 0xCBE in c/[email protected]
[-] [email protected] 1 points 1 year ago

ahah thank you, we shall all yell together then

Introduce yourself! by 0xCBE in c/[email protected]
[-] [email protected] 1 points 1 year ago

👋 infra sec blue team lead for a large tech company

view more: next ›

0xCBE

joined 1 year ago
MODERATOR OF
cloudsecurity