Ideas
Short field notes from the trenches, plus a few named frameworks I keep coming back to.
Frameworks
Thinking in blast radius A way to reason about the maximum damage a single compromised identity can do.Notes
GuardDuty has a blind spot on VPC endpoint traffic
Short field note. Replace with the real finding.