Iman H.’s Post

Completing this cybersecurity lab project on Azure taught me practical skills in VM setup, firewall configuration, and security log analysis. Creating a controlled vulnerable environment helped me understand how to identify and analyze security threats. This hands-on experience has been invaluable for my learning and growth in cloud security.

🔒 Exciting Achievement Unveiled! 🔒Thrilled to share the successful completion of the AWS Introduction to Security badge—a transformative journey into the heart of securing cloud environments! 🛡️💻🌐 Throughout this certification, I explored the principles of AWS security, mastering tools like AWS Identity and Access Management (IAM), AWS Key Management Service (KMS), and AWS WAF. From implementing robust access controls to ensuring data encryption and mitigating security threats, each module has been a crucial step towards becoming proficient in safeguarding cloud infrastructures.🔧 Tools Mastered:AWS IAM: Delved into identity management for secure access to AWS services.AWS KMS: Explored encryption key management for enhanced data security.AWS WAF: Navigated web application firewall to protect against common web exploits.🛠️ Grateful for the hands-on labs that provided practical insights and allowed me to apply theoretical knowledge in real-world scenarios. The AWS Introduction to Security journey is not just about badges; it's about acquiring the skills to fortify cloud environments against evolving cyber threats.💡 Ready to leverage this expertise in real-world scenarios, contributing to projects demanding robust and resilient security postures. Here's to continuous learning and the endless possibilities that AWS Introduction to Security unlocks! 🌟🔐#AWS #IntroductionToSecurity #CertificationJourney #ContinuousLearning #CloudSecurity #TechEnthusiast

Almost on time! One of my New Years resolution for this year was to get certified by Google in several fields. A few months ago I got certified on #Network and yesterday to complete my collection and being ready for 2024 resolutions I had the amazing opportunity to pass my #CyberSecurity exam! Now I can say proudly I am certified by Google Cloud from the most interesting fields. Next one? #CKA #cloud #engineer #gcp #googlecloudplatform #cybersecurity #security #network #devops #sre #production

Automated Security response on AWS. This AWS Solution is an add-on that works with AWS Security Hub and provides predefined response and remediation actions based on industry compliance standards and best practices for security threats. It helps Security Hub customers to resolve common security findings and to improve their security posture in AWS. This AWS Solution creates playbooks for customers to individually choose what they want to deploy in their Security Hub admin account. Each playbook contains the necessary actions to start the remediation workflow within the admin account or any member account.

Navigate the ☁️🛡️Cloud Security Certification landscape: #CCSP vs. #AWS, #Azure, #GCP, and more. Choose your path wisely for a thriving career in cloud security. 👉Check out our blog now! #protecteacademy #cybersecurity #cyberwarriors #hacking #Security

🚀 Leveled up my cloud security game! Thrilled to share that I conquered the AWS Cloud Quest: Security badge! 🛡️ This hands-on challenge pushed my skills to the limit, and I'm excited to implement these insights in real-world scenarios. When it comes to cloud security, it's no secret that safeguarding data and infrastructure is more crucial than ever. As our reliance on the cloud grows, so does the attack surface, making robust security solutions a necessity. Here's why cloud security matters: Shared Responsibility Model: Cloud providers like AWS offer secure infrastructure, but the responsibility falls on us, the cloud users, to configure and manage security properly. Understanding this shared responsibility is key. Constant Innovation, Constant Threats: The cloud landscape evolves rapidly, and so do the threats against it. Staying updated with the latest security best practices, tools, and vulnerabilities is crucial. Protecting Sensitive Data: The cloud often houses our most valuable assets, from customer records to financial data. Implementing robust access controls, encryption, and incident response plans is vital to prevent breaches and data loss. Building Trust and Resilience: Strong cloud security fosters trust with customers and stakeholders, showcasing a commitment to protecting their data and ensuring service continuity. My Cloud Quest journey was a valuable learning experience. I encourage everyone to invest in understanding and mastering cloud security. It's not just about ticking boxes; it's about building a secure, resilient foundation for your cloud infrastructure. Amazon Web Services (AWS) AWS Training and Certifications #AWS #CloudSecurity #CloudQuest #Cybersecurity #DataProtection #ITSecurity #CloudSkills

Cloud security is essential for safeguarding sensitive data, ensuring compliance, and maintaining trust in the face of evolving cyber threats in the cloud. Happy to announce that I’ve achieved Professional Cloud Security Engineer certification from google cloud.  #googlecloud #googlecloudcertified #epam #continuouslearning

In my two decades of security career I have helped scores of companies recover from hacks and breaches. Answering "What to do post a cloud security audit?" There are 100s of terrible answers on security response in LinkedIn's collaborative articles. I got triggered & answered angrily. Don't be stuck with decades old process and thinking. What should we automate? - The cloud security audit - The evaluation of findings - Priority on what to fix, which risk to accept, what is won't fix based on metadata - Automate remediation where the risk is critical - Use the manual effort of fixing issues to create security policies that automatically get enforced What about shifting left using Infra as Code? If you talk to those doing production operations, they are going to tell you - Infra a Code is only feasible is prod doesn't change all the time - At best deploying to product using Infra as Code become a vanity metric for inexperienced operational leaders All of this because of production drift. Drift is simply the difference between what was planned by business and what got changed at the last minute so parts of the cloud infra drifted from the IaC. Operations demand runtime security. Especially an environment like the public cloud with everything available as an API and great documentation. #cloudsecurity #securityaudit #incidentresponse

Thrilled to share my achievement: CompTIA Cybersecurity Analyst+: Cloud Computing & Cybersecurity! 🚀💻 Delving into the intricate intersection of cybersecurity and cloud computing has equipped me with advanced skills to tackle modern security challenges head-on. Excited to leverage this expertise to safeguard data and infrastructure in cloud environments. #CompTIA #Cybersecurity #CloudComputing

I recently passed my SANS/GIAC Cloud Penetration Tester exam! 🎉 Sharing my top 5 lessons learned and tools used during the SEC588 training (https://lnkd.in/eJKQtquH). 1. Enumerating Subdomains using Certificate Transparency (CT): Simply put, CT is like a public ledger where all SSL/TLS certificates issued for websites are recorded. These records are called CT logs, and they're publicly available for anyone to check (see crt.sh). By leveraging tools like Subfinder (https://lnkd.in/eeb7AAXE), which checks CT logs such as 'crt.sh', we can passively uncover the subdomains associated with a target domain. 2. CloudFox (https://lnkd.in/eJJux8cC): This tool offers a comprehensive view of the target cloud environment, supporting AWS (mostly), Azure, and GCP. When provided with a limited but valid access to the account, CloudFox identifies regions in use, estimates resource counts, reveals secrets (e.g., in EC2 user data), and more. Plus, CloudFox “loot files” provide sample exploit commands for each discovered resource for further exploration (saving me a few hours of research during the lab exercises). If you want an alternative cloud enumeration tool with a fancy GUI report, check out ScoutSuite (https://lnkd.in/eEB4hs8b) 3. Streamlining Asset Collection and Scan Pipeline: Efficiency is key, especially in large cloud environments. I found the following tool chain incredibly effective: Naabu (https://lnkd.in/eW5MF5RY) → Httpx (https://lnkd.in/em-qHiwd) → Nuclei (https://lnkd.in/enaQavk6). I would pass the target domains to Naabu for port scanning, then use HTTPX to evaluate URLs and pass the output to Nuclei for vulnerability scanning. 'gowitness' was the "go-to tool" for automatically taking screenshot of the pages. 4. AWS Exploitation with Pacu (https://lnkd.in/eQPrhf6u): Pacu is an open-source AWS exploitation framework for offensive security testing. It can exploit misconfigurations within an AWS account using a range of "modules". With Pacu, you can perform several attacks including user privilege escalation, backdooring of IAM users, attacking vulnerable Lambda functions, and much more. 5. Kubernetes Assessment with Peirates (https://lnkd.in/ePXTqAMa): Being a novice in Kubernetes, I was impressed by the amount of resources and comprehensive coverage Moses Frost (the SANS instructor) offers for containers and Kubernetes in general. One tool that stood out to me, and which I found incredibly handy, is Peirates. It operates similarly to kubectl but is templated specifically to execute targeted attacks. Do you use any of these tools in your daily activities? Do you have any other tools you find useful for cloud penetration testing? #sans #gcpn #cloudsecurity #cloudpentest #sec588 #redteam #pentest