Open Source Work
Open source projects focused on cloud security, attack simulation, and offensive security tooling.
Projects I maintain or contribute to, with a focus on cloud security tooling.
Leonidas
A framework for automating execution of attacker actions in the cloud, developed as part of research on attack detection in cloud-native environments at WithSecure. It provides a YAML-based format for defining cloud attacker tactics, techniques and procedures (TTPs) and their associated detection properties.
- A web API exposing each test case as an individual serverless endpoint, deployed via an automatically created CI/CD pipeline
- Sigma rules for detection
- Documentation — see detectioninthe.cloud for an example
- All infrastructure deployed using Terraform included in the repository
kali-packer-vagrant
A set of Packer templates and Vagrant files to automatically build a clean and up-to-date Kali Linux virtual machine, simplifying management of testing systems.
- Automated Kali Linux VM builds
- Ansible collections for installing dev and security tools
Related: ansible-collection-dev · ansible-collection-security