A collection of projects focusing on deploying cloud resources, exploiting vulnerable cloud resources, securing cloud infrastructure. These projects cover various aspects of cloud security, including IAM, Azure Firewall, S3, CDN(e.g. Cloudfront configuration), EC2, Security Groups, ACLs, Microsoft Defender for Cloud and more.
Succesfully deployed this portfolio website using AWS S3 bucket, AWS Certificate Manager, AWS Cloudfront and used Cloudflare for DNS management
Starting with a highly-limited IAM user, I reviewed previous IAM policy versions and restored one which allows full admin privileges, resulting in a privilege escalation exploit.
Exploiting S3 buckets and IAM Misconfigurations, exposing unencrypted EBS snapshots and secrets due to misconfigured permissions, creating significant security risks
Exploiting vulnerable AWS Lambda function with excessive permissions leading to privilege escalation hence creating a security risk.
Creating a virtual network with a subnet, configure application security groups to organize resources and implementing a network security group to manage access.
Deploying and configuring an Azure Firewall to secure network traffic and manage access within an Azure environment
Microsoft Sentinel-based threat detection and response by integrating data from Azure Activity and Microsoft Defender for Cloud, configuring alerts, and automating incident responses with Playbooks.
Deploy an Azure VM, create a Log Analytics workspace, Azure storage account, data collection rule to collect events and performance counters from virtual machines with Azure Monitor Agent.
Creating a proof-of-concept application that makes use of the Azure SQL Database support for Always Encrypted functionalit.
Configuring Microsoft Defender for Cloud to monitor a virtual machine and implementing recommendations for guest configuration and Just-in-time VM access.
Created a Resouce Group, Virtual Network, Network Security Group, deployed two Vitual Machines with Active Directory, SQL Server and joined the two Virtual Machine to the Domain
Step-by-step SCCM deployment in Oracle Cloud, covering VCN, Security Lists, Virtual Machines with AD, SQL Server, SCCM setup, and client management for enterprise-level IT infrastructure automation.