WebOrion™ Blog

  • All
  • Security Articles
AWS CloudGoat and mitigation strategies: Part 3

AWS Cloudgoat and mitigation strategies Part 3 This is part 3 of the series on AWS Cloudgoat Scenarios and the mitigation strategies. In this part, we cover Scenarios 4 and 5: Scenario 4: Privilege escalation via EC2 instance (iam_privesc_by_attachment) Scenario 5: Privilege escalation via SSRF web application exploit...

Read More
AWS CloudGoat and mitigation strategies: Part 2

AWS Cloudgoat and mitigation strategies Part 2 This is part 2 of the series on AWS Cloudgoat Scenarios and the mitigation strategies. In this part, we cover Scenarios 2 and 3: Scenario 2: Privilege escalation via AWS Lambda (lambda_privesc) Scenario 3: Misconfigured EC2 Reverse Proxy to S3 Breach...

Read More
AWS CloudGoat and mitigation strategies: Part 1

Introduction As cloud computing is becoming mainstream, the security concerns associated with it has been increasing as well.Most of the public cloud users understand that this is a shared responsibility between the cloud provider and the users as well. According to Gartner, 95% of all cloud security...

Read More
WebOrion secures The Learning Lab’s web digital assets

The Learning Lab is a premier learning enrichment centre in Singapore that embraces technology to allow interactions between teachers, students, and parents to extend beyond classrooms. WebOrion is an All-in-One Web Security & Performance Suite that fortifies, accelerate and monitor your websites. Built by our...

Read More