Real Sandbox Containers
Ramblings from Jessie: Getting Towards Real Sandbox Containers Sunday, May 1, 2016 · 5 min read - Containers are all the rage right now, utilizing Linux primitives like user namespaces and seccomp to create application sandboxes. - Chrome sandbox is a familiar example, using user namespaces and seccomp, similar to container features. - Key difference: Chrome runs as unprivileged user, while most containers run as root, requiring root privileges for creation and execution.
FEATURES
ALTERNATIVES
Zeus is a powerful tool for AWS EC2 / S3 / CloudTrail / CloudWatch / KMS best hardening practices with a focus on Identity and Access Management.
A framework for executing attacker actions in the cloud with YAML-based format for defining TTPs and detection properties, deployable via AWS-native CI/CD pipeline.
Open-source project for detecting security risks in cloud infrastructure accounts with support for AWS, Azure, GCP, OCI, and GitHub.
Export Kubernetes events for observability and alerting purposes with flexible routing options.
A tool for spinning up insecure AWS infrastructure with Terraform for training and security assessment purposes.
A setuid implementation of a subset of user namespaces, providing a way to run unprivileged containers without requiring root privileges.
Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.