Links
Add
The Big List of Engineering Management Resources – March 2022
https://practicallyleading.dev/the-big-list-of-engineering-management-resources-march-2022
My Inspirations
Now as a Director of Engineering at Docker, I’ve been doing some type of engineering leadership for the last decade.
I have learned from the best over the years, and many resources have shaped who I am and philosophies for how I lead....
Added 1 month ago
RFC 9180: Hybrid Public Key Encryption
https://www.rfc-editor.org/rfc/rfc9180.html
HPKE: Standardizing public-key encryption (finally!)
https://blog.cloudflare.com/hybrid-public-key-encryption
HPKE (RFC 9180) was made to be simple, reusable, and future-proof by building upon knowledge from prior PKE schemes and software implementations. It is already in use in a large assortment of emerging Internet standards and has a large assortment of interoperable implementations. This article provides an overview of this new standard, going back to discuss its motivation, design goals, and development process.
Thread by @bettersafetynet on Thread Reader App – Thread Reader App
https://threadreaderapp.com/thread/1496496087741480960.html
@bettersafetynet: I've had 3 calls so far today (it's not even 10) about defending against Russian cyber ops I'm tired of having the same call... so... here's what I've told everyone. This is the playbook you...…
Added 1 month ago
https://github.com/awslabs/aws-cloudsaga
https://github.com/awslabs/aws-cloudsaga
AWS CloudSaga - Simulate security events in AWS. Contribute to awslabs/aws-cloudsaga development by creating an account on GitHub.
LibRedirect
https://libredirect.github.io/
A web extension that redirects YouTube, Twitter, Instagram, etc. requests to alternative privacy-friendly frontends
Added 1 month ago
How to start using reusable workflows with GitHub Actions | The GitHub Blog
https://github.blog/2022-02-10-using-reusable-workflows-github-actions/
Reusable workflows offer a simple and powerful way to avoid copying and pasting workflows across your repositories.
Show HN: Jless a command-line JSON viewer
https://pauljuliusmartinez.github.io/
jless | plaintextsports.com
https://aws.amazon.com/blogs/security/how-to-build-a-multi-region-aws-security-hub-analytic-pipeline/?sc_channel=sm&sc_campaign=AWSSecurity_Blog&sc_publisher=TWITTER&sc_country=Security&sc_geo=GLOBAL&sc_outcome=awareness&trk=AWSSecurity_Blog_TWITTER&s=09
https://aws.amazon.com/blogs/security/how-to-build-a-multi-region-aws-security-hub-analytic-pipeline/?sc_channel=sm&sc_campaign=AWSSecurity_Blog&sc_publisher=TWITTER&sc_country=Security&sc_geo=GLOBAL&sc_outcome=awareness&trk=AWSSecurity_Blog_TWITTER&s=09
AWS Security Hub is a service that gives you aggregated visibility into your security and compliance posture across multiple Amazon Web Services (AWS) accounts. By joining Security Hub with Amazon QuickSight—a scalable, serverless, embeddable, machine learning-powered business intelligence (BI) service built for the cloud—your senior leaders and decision-makers can use dashboards to empower data-driven decisions […]
Added 1 month ago
How to keep up with CI/CD best practices | GitLab
https://about.gitlab.com/blog/2022/02/03/how-to-keep-up-with-ci-cd-best-practices/
Added 1 month ago
Continuous Security: The Next Evolution of CI/CD - DevOps.com
https://devops.com/continuous-security-the-next-evolution-of-ci-cd/
With end-to-end integration into the SDLC, continuous security supports CI/CD to improve productivity, speed time-to-market and reduce risks.
How to build a CI/CD pipeline with GitHub Actions in four simple steps | Th
https://github.blog/2022-02-02-build-ci-cd-pipeline-github-actions-four-steps/
Here’s a quick guide on the advantages of using GitHub Actions as your preferred CI/CD tool—and how to build a CI/CD pipeline with it.
Logseq: A Free & Open-Source App to Create Notes Manage Tasks Build Knowledge
https://itsfoss.com/logseq/
Logseq is a versatile knowledge platform with the support for Markdown and Org-mode. Create tasks, manage notes, and do a lot more things.
Added 1 month ago
prowler-cloud/prowler
https://github.com/prowler-cloud/prowler
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more - prowler-cloud/prowler
Added 1 month ago
SSH Bastion Host Best Practices
https://goteleport.com/blog/security-hardening-ssh-bastion-best-practices/
Tracing the path of network traffic in Kubernetes
https://learnk8s.io/kubernetes-network-packets
Learn how packets flow inside and outside a Kubernetes cluster. Starting from the initial web request and down to the container hosting the application
Added 1 month ago
Certbot Instructions | Certbot
https://certbot.eff.org/instructions?ws=other&os=ubuntufocal
Certbot Instructions
Added 1 month ago
Federate Kubernetes with AWS IAM using OIDC · reecetech
https://reece.tech/posts/oidc-k8s-to-aws/
Added 1 month ago
Installing macOS 12 “Monterey” on Proxmox 7 – Nicholas Sherlock
https://www.nicksherlock.com/2021/10/installing-macos-12-monterey-on-proxmox-7/
Added 1 month ago
Jailer: A tool for database subsetting schema and data browsing
https://wisser.github.io/Jailer/
Data Export Tool
Container security best practices: Ultimate guide - Sysdig
https://sysdig.com/blog/container-security-best-practices/
Sticking to container security best practices is critical for successfully delivering secure software.
Added 1 month ago
How to replace estimations and guesses with a Monte Carlo simulation
https://news.ycombinator.com/item?id=28769331
Added 1 month ago