Nefarious Container

We recently evaluated Lacework as a Cloud Workload Protection Platform for Workiva. To test some of the CWPP capabilities of Lacework I created a nefarious-container that did some … errr … nefarious things that should be caught by a CWPP. The container code is up on Github. It pulls information from a known crypto mining site as well as modifies the /etc/resolv file to trigger the File Integrity Monitoring (FIM) feature of Lacework. [Read More]

Podman Vagrant

Still working at home during the pandemic, the Bank has indicated that there will be no COVID-19 layoffs until the end of the year for which I am grateful. In addition we will be working from home until probably October. During the pandemic, I wanted to come up to speed on new technologies and have started working with Podman and created a vagrant file to build a Centos 8 based Podman installation. [Read More]