Learn and stay hungry and curious



Penetration Testing the A&B Way

Penetration Tests should be an important part of your company’s security strategy. Security experts – often external – try to find gaps in your IT


The log4j security vulnerability

Update 15th Dec 2021: As the current situation is evolving security researchers noted that the presented quick fixes to mitigate the current log4j security vulnerability


Aqua Security and AWS – A beautiful friendship

Aqua Security offers a SaaS-platform for a number of security-related products for cloud environments. Together with the AWS-build-in-security-tools Aqua enables users to counter the numerous security risks associated with the configuration of AWS environments.

Finding Overprivileged users
Amazon Web Services

Finding overprivileged users in AWS with CloudTracker

Complex AWS environment tend to have users or roles with more privileges granted than they really need. Finding those users and roles can be a time-consuming activity, so tool-support is needed for this task. CloudTracker is an Open-Source-tool for analyzing users, roles and their granted and used privileges.