Cloud Security Labs · Other Projects
A structured series of hands-on AWS security labs focused on misconfiguration patterns, detection signals, and infrastructure hardening techniques. Each lab documents the setup, impact, detection approach, and remediation.
Demonstrates how unintended public access can occur in Amazon S3, the resulting risk, and how to detect and prevent data exposure.
Explores the impact of incomplete or misconfigured logging, how visibility gaps affect detection, and how to properly secure and validate audit trails.
Examines how improper IAM role permissions can allow privilege escalation and outlines detection and least-privilege remediation strategies.
Selected engineering work outside of the cloud security lab series.
Python-based utility for summarizing CloudTrail events and identifying potentially risky IAM configuration changes.