Archives for Vulnerability Management
Containers on GCP – Runtime attacks versus Image Vulnerabilities
Runtime Attacks - Security Command Center - Premium Version Image vulnerabilities - Vulnerability Scanning in the Image Registry
Intrusion Prevention Features in Firewalls – General
1. traffic flow inspection to stop exploits using signature-based detection. 2. Block known bad URLs and monitor fully qualified domain names
Prisma versus Native CSPM Alerting on GCP and AWS
Native Vulnerability and Misconfiguration Monitoring Tools run for a longer period of time - and capture account level events that may not be captured by Prisma and external CSPM tools.…
API Vulnerabilities – API Attack Surface
This content is password protected. To view it please enter your password below: Password:
Wiz versus Prisma for vulnerability assessment, misconfiguration of resources
Prisma versus Wiz Prisma mainly looks at misconfiguration of resources - not really vulnerabilities Agent based scans are not tied to CSPM reporting. While prisma does OS level agent scans,…
Zscaler Products and Use Cases
This is a work in Cloud to Cloud Protection Internet to Cloud and Cloud to Internet Protection On Prem to Cloud Protection
Premium Tier Security Command Center GCP
Security Health Analytics should be your first stop for auditing the security posture of your GCP environment. In addition to several built in detectors, there are a handful of detectectors…
GKE Access Control and Google’s Container Registry
Also read Roles and Permissions in GCP Access control for GKE Clusters Cloud IAM works at a project level to grant access to the GKE Clusters within a project. However,…
Vulnerability Scanning in GCP
Some Tools that can be used within GCP for OS Level Security Scans Top Level Tool - Security Command Center (Premium Tier) This is where you will see any alerts…
Aqua Security – Vulnerability Management for Cloud Native Workloads
Aqua security product (agents) For deeper security scanning of cloud native (containerized) workloads, try this tool. Does it scan hosts as well? Yes - it has Docker Image Scans as…