Vulnerability Management Archives - Multi Cloud Architect, Security Specialist

Archives for Vulnerability Management

Containers on GCP – Runtime attacks versus Image Vulnerabilities

anuj January 23, 2024 Containers on GCP – Runtime attacks versus Image Vulnerabilities2024-01-23T16:30:06+00:00 Vulnerability Management No Comment

Runtime Attacks - Security Command Center - Premium Version Image vulnerabilities - Vulnerability Scanning in the Image Registry

Intrusion Prevention Features in Firewalls – General

anuj August 11, 2022 Intrusion Prevention Features in Firewalls – General2022-08-11T15:17:48+00:00 Vulnerability Management No Comment

1. traffic flow inspection to stop exploits using signature-based detection. 2. Block known bad URLs and monitor fully qualified domain names

Prisma versus Native CSPM Alerting on GCP and AWS

anuj July 21, 2022 Prisma versus Native CSPM Alerting on GCP and AWS2022-07-21T18:37:23+00:00 AWS No Comment

Native Vulnerability and Misconfiguration Monitoring Tools run for a longer period of time - and capture account level events that may not be captured by Prisma and external CSPM tools.…

API Vulnerabilities – API Attack Surface

anuj June 1, 2022 API Vulnerabilities – API Attack Surface2022-06-01T16:38:11+00:00 Vulnerability Management Enter your password to view comments.

This content is password protected. To view it please enter your password below: Password:

Wiz versus Prisma for vulnerability assessment, misconfiguration of resources

anuj February 1, 2022 Wiz versus Prisma for vulnerability assessment, misconfiguration of resources2022-06-02T17:23:44+00:00 Vulnerability Management No Comment

Prisma versus Wiz Prisma mainly looks at misconfiguration of resources - not really vulnerabilities Agent based scans are not tied to CSPM reporting. While prisma does OS level agent scans,…

Zscaler Products and Use Cases

anuj January 20, 2022 Zscaler Products and Use Cases2022-04-02T15:46:47+00:00 Incident Response No Comment

This is a work in Cloud to Cloud Protection Internet to Cloud and Cloud to Internet Protection On Prem to Cloud Protection

Premium Tier Security Command Center GCP

anuj August 24, 2021 Premium Tier Security Command Center GCP2021-08-24T15:53:04+00:00 GCP Compliance 1 Comment

Security Health Analytics should be your first stop for auditing the security posture of your GCP environment. In addition to several built in detectors, there are a handful of detectectors…

GKE Access Control and Google’s Container Registry

anuj August 18, 2021 GKE Access Control and Google’s Container Registry2021-08-18T18:12:37+00:00 Vulnerability Management No Comment

Also read Roles and Permissions in GCP Access control for GKE Clusters Cloud IAM works at a project level to grant access to the GKE Clusters within a project. However,…

Vulnerability Scanning in GCP

anuj June 9, 2021 Vulnerability Scanning in GCP2021-06-09T16:48:52+00:00 Vulnerability Management No Comment

Some Tools that can be used within GCP for OS Level Security Scans Top Level Tool - Security Command Center (Premium Tier) This is where you will see any alerts…

Aqua Security – Vulnerability Management for Cloud Native Workloads

anuj June 9, 2021 Aqua Security – Vulnerability Management for Cloud Native Workloads2021-06-09T16:46:54+00:00 Vulnerability Management 1 Comment

Aqua security product (agents) For deeper security scanning of cloud native (containerized) workloads, try this tool. Does it scan hosts as well? Yes - it has Docker Image Scans as…