This is my 2nd Lab Experiment on Azure Purview with private network deployment architecture . You can read the 1st
Continue reading »Category: Cloud
Secure your business api with mTLS, Lambda Authorizer, WAF + Shield at AWS Api Gateway
mTLS stands for Mutual TLS. By default, the TLS protocol only requires a server to authenticate itself to the client.
Continue reading »Deploy Angular App in AWS S3 and .Net Core API in Lambda (server-less)
Thanks to all you for sending congratulatory notes on my attainment of Azure Solutions Architect certification. Cloud is a commodity
Continue reading »Phishing Attacks via Messaging and the problem with internet specifications and standards
We all are familiar with email phishing but attackers are increasingly using other forms of communications since email servers are
Continue reading »Security Automation- Protect Azure App Services Applications
It’s been couple of months since I started security automation to stop the bad actors at the front gate and
Continue reading »Security Automation based on Actionable Intelligence (AI)- Stop the bad actors at the gate before they can get to your public websites in near real-time.
The solution or the idea in this post can be commercialized by security product vendors or entrepreneurs. Even though this
Continue reading »Access Azure SQL Databases over Private Connection from Azure vNET and On-Premise
Azure SQL is a PaaS regional service and by default it is accessible over the internet from anywhere. So, why
Continue reading »Deciphering the security of Azure Storage Blob access with Access Key and HMAC Signature
First of all, don’t use shared access key to access Azure Storage Account. It’s not recommended for security reason. Instead,
Continue reading »Lesson learned- EKS w/Fargate and ALB
This post is about lesson learned from earlier effort to get EKS cluster running with fargate compute and expose the
Continue reading »ThinkPHP Remote Code Execution Vulnerability and why we need to employ WAF at the edge gateways
I had no idea what this ThinkPHP is about until I Googled it but I knew someone is trying to
Continue reading »