Aia kekahi mau mea ʻokoʻa ʻē aʻe e kōkua ana i nā ʻōnaehana palekana maoli e hāʻawi ʻia e nā hui kapua.
Eia kekahi laʻana o nā ʻenehana palekana kapuaʻi ʻewalu koʻikoʻi.
ʻO AWS, Microsoft, a me Google kekahi mau hui kapua e hāʻawi i nā ʻano hiʻohiʻona palekana maoli. ʻOiai he mea kōkua kēia mau ʻenehana, ʻaʻole hiki iā lākou ke hoʻokō i nā pono o kēlā me kēia. ʻIke pinepine nā pūʻulu IT i nā āpau i ko lākou hiki ke hana palekana a mālama i nā haʻahaʻa hana ma kēia mau kahua āpau i ka holomua ʻana o ke ao. I ka hopena, na ka mea hoʻohana e pani i kēia mau āpau. Pono nā ʻenehana palekana kapua e wehe i nā kūlana e like me kēia.
Hoʻohana pinepine ʻia nā ʻenehana palekana kapua i hoʻohana nui ʻia e nā hui e like me Netflix, Capital One, a me Lyft i loaʻa nā hui IT nui me ka ʻike nui o ke ao. Hoʻomaka nā hui i kēia mau papahana no ka hoʻoponopono ʻana i kekahi mau koi i hoʻokō ʻole ʻia e nā mea hana a me nā lawelawe i loaʻa, a wehe lākou i ke kumu o ia polokalamu me ka manaʻolana e pono ia i nā ʻoihana ʻē aʻe. ʻOiai ʻaʻole ia i loko o nā mea a pau, ʻo kēia papa inoa o nā ʻōnaehana palekana kapuaʻi punahele punahele ma GitHub kahi wahi maikaʻi loa e hoʻomaka ai. ʻO ka hapa nui o lākou i kūpono me nā hoʻonohonoho kapuaʻi ʻē aʻe, aʻo nā mea ʻē aʻe i kūkulu ʻia e hana pū me AWS, ke ao ākea kaulana loa. E nānā i kēia mau ʻenehana palekana no ka pane ʻana i nā hanana, ka hoʻāʻo ʻana, a me ka ʻike.
Kahu Kapua
Hana ʻia ka hoʻokele ʻana o AWS, Microsoft Azure, a me Google Cloud Platform (GCP) me ke kōkua o Cloud Custodian, kahi ʻenekini aupuni ʻole. Me ka hōʻike ʻana a me ka hoʻopaʻa ʻana i hoʻohui ʻia, hoʻohui ia i kekahi o nā hana hoʻokō e hoʻohana ai nā ʻoihana i kahi kahua hoʻokahi. Hiki iā ʻoe ke hoʻokumu i nā lula me ka hoʻohana ʻana i Cloud Custodian e hoʻohālikelike i ke kaiapuni me nā koi palekana a me ka hoʻokō ʻana a me nā pae hoʻohālike no ka loiloi kumu kūʻai. ʻO ke ʻano a me ka pūʻulu o nā kumuwaiwai e nānā, a me nā hana e hana ʻia ma kēia mau kumuwaiwai, ua hōʻike ʻia ma nā kulekele Cloud Custodian, i wehewehe ʻia ma YAML. Hiki paha iā ʻoe, no ka laʻana, ke hoʻokumu i kahi kulekele e loaʻa ai ka hoʻopili ʻana o ka bākeke no nā bākeke Amazon S3 āpau. No ka hoʻoholo 'akomi i nā lula, hiki iā ʻoe ke hoʻohui i ka Cloud Custodian me nā manawa holo ʻole server a me nā lawelawe kapuaʻi maoli. Hana ʻia a hoʻolako ʻia ma ke ʻano he kumu manuahi e
Palapala kiʻi
ʻO ke kiʻi nui ma ʻaneʻi ʻo nā palapala ʻāina Infrastructure i hana ʻia e ka cartography. Hāʻawi kēia mea hana kiʻi ʻakomi i kahi hiʻohiʻona ʻike o nā pilina ma waena o kāu mau ʻāpana hoʻolālā kapua. Hiki i kēia ke hoʻonui i ka ʻike palekana holoʻokoʻa o ka hui. E hoʻohana i kēia mea hana no ka hana ʻana i nā hōʻike waiwai, ʻike i nā vectors hoʻouka kaua, a kuhikuhi i nā manawa hoʻomaikaʻi palekana. Ua hana nā ʻenekinia ma Lyft i ka palapala kiʻi, e hoʻohana ana i kahi waihona Neo4j. Kākoʻo ia i nā ʻano lawelawe AWS, G Suite, a me Google Cloud Platform.
Diffy
ʻO kahi mea paahana hoʻāʻo kaulana loa no ka forensics digital a me ka pane hanana i kapa ʻia ʻo Diffy (DFIR). ʻO ke kuleana o kāu hui DFIR ka ʻimi ʻana i kāu mau waiwai no nā mea hōʻike i waiho ʻia e ka mea komo ma hope o ka hoʻouka ʻia ʻana a i ʻole ka hacked o kou kaiapuni. Pono paha kēia i ka hana lima ikaika. Hōʻike ka mīkini ʻokoʻa i hāʻawi ʻia e Diffy i nā manawa like ʻole, nā mīkini virtual, a me nā hana waiwai ʻē aʻe. I mea e kōkua ai i ka hui DFIR e kuhikuhi i nā wahi o ka poʻe hoʻouka kaua, e hōʻike ʻo Diffy iā lākou i nā kumuwaiwai e hana ʻino nei. Aia nō ʻo Diffy i ka hoʻomaka ʻana o ka hoʻomohala ʻana a ke kākoʻo wale nei ʻo ia i nā manawa Linux ma AWS, akā naʻe hiki i kāna hoʻolālā plugin ke hiki i nā ao ʻē aʻe. Ua hoʻokumu ka Pūnaehana Security a me ka Pūʻulu pane o Netflix iā Diffy, i kākau ʻia ma Python.
Git-huna
ʻO kēia mea hana palekana hoʻomohala i kapa ʻia ʻo Git-secrets e pāpā iā ʻoe mai ka mālama ʻana i nā mea huna a me nā ʻikepili koʻikoʻi ʻē aʻe i kāu waihona Git. ʻAʻole hōʻole ʻia nā ʻōlelo hoʻopaʻa a i ʻole hoʻopaʻa ʻia i kūpono i kekahi o kāu mau hiʻohiʻona hōʻike kapu ʻia ma hope o ka nānā ʻia ʻana. Ua hana ʻia ʻo Git-secrets me ka manaʻo o AWS. Ua hoʻomohala ʻia e AWS Labs, nona ke kuleana no ka mālama ʻana i ka papahana.
OSSEC
ʻO OSSEC kahi kahua palekana e hoʻohui i ka nānā ʻana i ka log, palekana ike a me ka hoʻokele hanana, a me ka ʻike intrusion ma muli o ka host. Hiki iā ʻoe ke hoʻohana i kēia ma nā VM e pili ana i ke ao ʻoiai ua hoʻolālā mua ʻia ia no ka pale ma ka hale. ʻO ka hoʻololi ʻana o Platform kekahi o kāna mau pono. Hiki i nā kaiapuni ma AWS, Azure, a me GCP ke hoʻohana iā ia. Eia hou, kākoʻo ia i nā ʻano OS, me Windows, Linux, Mac OS X, a me Solaris. Ma waho aʻe o ka mākaʻikaʻi a me ka mākaʻikaʻi ʻole, hāʻawi ʻo OSSEC i kahi kikowaena hoʻokele kikowaena no ka mālama ʻana i nā lula ma waena o nā paepae. ʻO nā hiʻohiʻona koʻikoʻi o OSSEC: E ʻike ʻia nā faila a i ʻole ka hoʻololi papa kuhikuhi ma kāu ʻōnaehana e ka nānā ʻana i ka pono o ka faila, e hoʻomaopopo iā ʻoe. E hōʻiliʻili, nānā, a hoʻomaopopo iā ʻoe i kekahi ʻano maʻamau mai nā lāʻau āpau o ka ʻōnaehana.
ʻIke ʻia ʻo Rootkit, e hoʻomaopopo iā ʻoe inā e hoʻololi kāu ʻōnaehana e like me kahi rootkit. Ke ʻike ʻia nā mea komo, hiki i ka OSSEC ke pane ikaika a hana koke. Mālama ka OSSEC Foundation i ka mālama ʻana o OSSEC.
GoPhish
no ka mea, phish ʻO ka hoʻāʻo simulation, ʻo Gophish kahi papahana open-source e hiki ai i ka hoʻouna ʻana i nā leka uila, ka nānā ʻana iā lākou, a me ka hoʻoholo ʻana i ka nui o nā mea loaʻa i kaomi i nā loulou i kāu leka uila phony. A hiki iā ʻoe ke nānā i kā lākou helu helu āpau. Hāʻawi ia i kahi hui ʻulaʻula i nā ʻano hoʻouka kaua me nā leka uila maʻamau, nā leka uila me nā mea hoʻopili, a me RubberDuckies e hoʻāʻo i ka palekana kino a me ka kamepiula. I kēia manawa ma luna o 36 hōʻanoho Loaʻa nā templates mai ke kaiāulu. Ua mālama ʻia e HailBytes kahi hoʻolaha i hoʻokumu ʻia ma AWS i hoʻopiha ʻia me nā mamana a paʻa i nā kūlana CIS. maanei.
ʻO Prowler
ʻO Prowler kahi mea hana laina kauoha no AWS e loiloi ana i kāu ʻōnaehana i ka hoʻohālikelike ʻana i nā kūlana i hoʻonohonoho ʻia no AWS e ka Center for Internet Security a me nā nānā ʻana o GDPR a me HIPAA. Loaʻa iā ʻoe ke koho e nānā i kāu ʻōnaehana piha a i ʻole kahi kikoʻī AWS a i ʻole ka ʻāina. Loaʻa iā Prowler ka hiki ke hoʻokō i nā loiloi he nui i ka manawa hoʻokahi a hoʻouna i nā hōʻike ma nā ʻano like me CSV, JSON, a me HTML. Hoʻohui ʻia, ua hoʻokomo ʻia ʻo AWS Security Hub. ʻO Toni de la Fuente, he loea palekana Amazon e pili mau ana i ka mālama ʻana i ka papahana, hoʻomohala ʻo Prowler.
Monkey Palekana
Ma nā hoʻonohonoho AWS, GCP, a me OpenStack, Security Monkey he mea kiaʻi kiaʻi e nānā pono ana i nā hoʻololi kulekele a me nā hoʻonohonoho nāwaliwali. No ka laʻana, hoʻolaha ʻo Security Monkey ma AWS iā ʻoe i kēlā me kēia manawa i hana ʻia a wehe ʻia kahi pahu S3 a me kahi hui palekana, nānā i kāu mau kī AWS Identity & Access Management, a hana i kekahi mau hana nānā ʻē aʻe. Ua hana ʻo Netflix i ka Security Monkey, ʻoiai ke hāʻawi wale nei i nā pilikia liʻiliʻi e like me kēia manawa. ʻO AWS Config a me Google Cloud Assets Inventory nā mea kūʻai aku.
No ka ʻike ʻana i nā mea hoʻohana punahele ākea hou aʻe ma AWS, e nānā i kā mākou HailBytes ' Hāʻawi ʻia ka mākeke AWS ma aneʻi.
