Following on from my previous post about Network Security Groups, this post is about securing an App Service Environment. An Application Gateway with Web Application Firewall (WAF) is also included to provide additional protection by providing the Web Application Gateway functionality. This works by inspecting the traffic and providing defence against the OWASP top 10…
Author: John
Managing Azure Network Traffic with Network Security Groups
Azure Network Security Groups (NSG) are a core tool that enables you to control the network traffic flow within an Azure Virtual Network. A Network Security Group is a collection of stateful layer 3/4 allow/deny rules, that can be associated with either subnets or individual network interfaces. In this post I hope to cover the basics of how NSGs can be used to manage the traffic within an Azure environment and provide segmentation as part of a zero trust solution.
Share this:
Integrating ARM Template Security Testing into a DevOps Pipeline
Following on from an earlier post about incorporating penetration testing with OWASP ZAP into an Azure DevOps pipeline, I am going to talk about how to add vulnerability checks for your ARM Templates to a release pipeline.
Share this:
Integrating security testing into an Azure DevOps pipeline – OWASP ZAP
One of the most effective ways of enhancing the security posture of a solution is to incorporate security into the development lifecycle and embed it within the normal CI/CD pipelines of a project. In this post I am going to look at the Passive Pentest stage of the CI/CD Pipeline.
Share this:
Managing time with an old school pre-digital tool
Whilst trying to organise my day, I have to manage my diary in a couple of places, my work calendar and my clients work calendar, both are Microsoft Exchange Online based, but there is no federation in place so I have to update both manually to ensure they match. I also must keep both my…
Share this:
I’ve written off April
April has just disappeared, I have been used to working from home for periods of time; but this is different. I have found it very hard to work remotely with clients I have not had any face to face contact with, and the daily grind has been very hard going. To top it off, when…
Share this:
Azure Premium SSD now supports burst mode
Microsoft have made a number of changes to their Premium SSD managed disk service, 3 new small sizes (4, 8, & 16 GiB) and have also introduced burst mode for disk sizes P20 and below (<= 512GiB). Disk bursting allows your disks to increase both IOPS and Throughput for up to 30 minutes, this capability…
Share this:
Azure Capacity issues
These are truly difficult times, I thought I would start a series of blog posts about Azure Sentinel. This was going to take some effort getting a good volume of logs generated so I decided to use my MSDN account and associated credits to house the Log analytics workspace and create a free account to…
Share this:
iPads and a meditation streak
Recently I have found myself using my iPad Pro much more as a companion to my laptop, both for watching training videos and reading technical books as well as for reviewing documents and making notes with the amazing apple pencil. I bought mine a few years ago and as such it is a little long…
Share this:
Clearing up junk, destructive bunnies & the Disney+ channel
Ok so I have decided to give the new Disney+ channel a try, if only to see what The Mandalorian is actually like, I signed up for an initial 7 day trial and I have to say I like it. On the plus side there are all of the Star Wars & Marvel movies along…
