Practical articles on Linux hardening, AWS security, CIS/STIG compliance, and infrastructure architecture; written from real engagements, not theory. No fluff, no padding. Just what works in production.
Step-by-step implementation of CIS Level 2 controls on Ubuntu 22.04. Covers filesystem hardening, kernel parameter tuning, SSH configuration, auditd setup, and automated scanning with Lynis.
Over-permissive roles, missing SCPs, wildcard policies, and cross-account trust misconfigurations — the IAM anti-patterns I see repeatedly, and the exact steps to remediate them.
How to implement Zero Trust architecture on AWS using VPC segmentation, security group micro-perimeters, PrivateLink, IAM condition keys, and automated GuardDuty response — with Terraform throughout.
Need someone to apply this knowledge to your actual infrastructure?