aws - Stratum Security Blog

Sign in Subscribe

aws

A collection of 3 posts

Route 53 as Pentest Infrastructure

Route 53 as Pentest Infrastructure

Use of DNS infrastructure is a staple of blind application testing and data exfiltration. Both of these scenarios are applicable in most pentest engagements, but building engagement specific DNS infrastructure can be a pain. Now with so many cloud providers available, can we make deployment of this infrastructure easier? Enter

What we learned about cloud security running a SaaS in AWS for 5 years - Part 7 - Availability

What we learned about cloud security running a SaaS in AWS for 5 years - Part 7 - Availability

This is Part 7 of a multi-part series of posts on how we securely ran ThreatSim in AWS for 5 years and did right by our customers. Some of the controls described are common sense and others are a bit more unique. Intro Although Amazon operates highly-available data centers, failures