Tag feed

CSPM, CIEM, CNAPP: What These Cloud Security Tools Really Do and Why They Matter for You

Sep 12, 2025 · 5 min read · Working with cloud services? Keeping your data and systems safe can get complicated fast. Tools like CSPM, CIEM, and CNAPP are supposed to help, but honestly, it’s easy to get lost in the jargon. Each of these tools focuses on a different slice of cl...

MBMatt Browncloudsecburrito.com

Reclaiming CSPM: More Than Checks, It’s a Cloud Story

Jul 15, 2025 · 13 min read · In Part 1, we kept things simple. We used Steampipe with AWS to ask basic questions like “Is this bucket public?” or “Does Matt have MFA?”. We did it so that we could produce meaningful misconfig detections and not use CLI hackery. Simple checks only...

MBMatt Browncloudsecburrito.com

Reclaiming CSPM: How I Learned to Stop Worrying and Query the Cloud

Jul 1, 2025 · 13 min read · When I think of Cloud Security Posture Management — CSPM — I think of simple, necessary checks. Things like: Is this EBS volume encrypted? Does this IAM user have MFA enabled? Is logging turned on for this S3 bucket? It’s not complicated work — ...

Why a Platform Like Wiz is a Far Superior CNAPP Platform

Jun 7, 2025 · 4 min read · The previous article highlighted how the power of correlation strengthens a CNAPP platform. Wiz has emerged as a leader in the CNAPP space, and its superiority can be explained through a few key innovations: The "Google Search" of Your Cloud (Securi...

CNAPP : A Unified, Code-to-Cloud Security Paradigm

Jun 7, 2025 · 4 min read · We understood from the previous article that - A Cloud Native Application Protection Platform (CNAPP) is an integrated, end-to-end security solution designed to protect cloud-native applications across their entire lifecycle, from development (code) ...

The CNAPP Essentials

Jun 7, 2025 · 3 min read · Beyond Posture Management to Holistic Cloud Security The rapid adoption of cloud computing has revolutionized how businesses operate, fostering unprecedented agility and innovation. However, this transformative power comes with a complex security lan...

The Power of Correlation: Securing the Entire Cloud Architecture from Code to Cloud

Jun 7, 2025 · 3 min read · The true strength of a CNAPP lies not just in the individual capabilities of its components, but in their correlation and integration, especially with insights from your code. Imagine a scenario: Code (Shift-Left): During development, your CNAPP's c...

GJGaurav Joshigauravjoshii.hashnode.dev

Bridging the Gap Between CSPM and ASM in Cloud Security

May 10, 2025 · 2 min read · While assessing a cloud environment for potential security gaps, I stumbled upon an intriguing finding. Despite having a well-established Cloud Security Posture Management (CSPM) solution actively flagging misconfigurations, enforcing security polici...

ASAmit Sidesai-blog.dev

Cyber Unicorns Reverse Engineered (CSPM & XDR): JSON, Cypher, Graphs, Embeddings, and Intruders

Mar 18, 2025 · 8 min read · Tags: AI, Cyber, CSPM, XDR, GraphMap, GNN, Cypher, XGBoost, Python What’s the technology behind Cybersecurity Unicorns? What are the complexities of building AI First XDR/CSPM Products? Multiple Use Cases, Misconfigurations, Datatypes, and Cyber Ont...