Blogging on s4yhii's blog https://blog.s4yhii.com/categories/blogging/ Recent content in Blogging on s4yhii's blog s4yhii's blog https://blog.s4yhii.com/%3Clink%20or%20path%20of%20image%20for%20opengraph,%20twitter-cards%3E https://blog.s4yhii.com/%3Clink%20or%20path%20of%20image%20for%20opengraph,%20twitter-cards%3E Hugo -- 0.155.3 en-us Thu, 20 Jan 2022 12:00:00 -0400 Vulnerability Management with Nessus in AWS https://blog.s4yhii.com/posts/2022-01-21-vuln-scan-with-nessus-in-aws/ Thu, 20 Jan 2022 12:00:00 -0400 https://blog.s4yhii.com/posts/2022-01-21-vuln-scan-with-nessus-in-aws/ <h2 id="introduction">Introduction</h2> <p>In this tutorial we will cover vulnerability scanning and vulnerability remediation. These are two of the main steps in the Vulnerability Management Lifecycle. We will be using Nessus Essentials to scan local VMs hosted on VMWare Workstation in order run credentialed scans to discover vulnerabilities, remediate some of the vulnerabilities.</p> <h2 id="ec2-instance-setup">EC2 Instance Setup</h2> <p>first step is launch an EC2 instance, the recommended requirements are:</p> <ul> <li>windows OS</li> </ul> <p><img alt="Untitled" loading="lazy" src="https://raw.githubusercontent.com/s4yhii/s4yhii.github.io/master/assets/images/htb/Vulnerability%20Management%20with%20Nessus%20in%20AWS%2090286706ffaf46128c3727fb6f6c7e58/Untitled.jpg"></p> <ul> <li>basic: t3 medium</li> <li>recommended: t3 xlarge</li> </ul> <p>Decrypt your password to login in a RDP session and use this to access your EC2 instance</p> Cloud Resume Challenge https://blog.s4yhii.com/posts/2022-01-10-aws-cloud-resume-challenge/ Mon, 10 Jan 2022 12:00:00 -0400 https://blog.s4yhii.com/posts/2022-01-10-aws-cloud-resume-challenge/ <h1 id="cloud-resume-challenge">Cloud Resume Challenge</h1> <h2 id="setup-aws">Setup AWS</h2> <p>Create your aws account</p> <p>Setup MFA for your roor account</p> <p>Create an IAM user</p> <p>Assign permission (Principle of Least privilege)</p> <p>Setup Vault (<a href="https://github.com/99designs/aws-vault">https://github.com/99designs/aws-vault</a>)</p> <p>aws-vault add myuser ( ex: aws-vault add dev)</p> <p>aws-vault exex myuser — aws s3 ls</p> <h2 id="setup-s3">Setup S3</h2> <p>What is s3: file service useful for storing files usually for host a website</p> <p>What is AWS SAM: server less application model</p> <p>we will create an AWS Lambda (we ignore this for now)</p>