AWS GuardDuty Manager

As mentioned in my previous blog New to AWS GuardDuty? I have been working on open sourcing the tool that I wrote for internal use. Now it is public available on my GitHub: AWS GuardDuty Manager Description AWS GuardDuty Manager (GDM) is a tool that allows you to perform some common GuardDuty tasks (start, stop and … Continue reading AWS GuardDuty Manager


New to AWS GuardDuty?

If you are new to AWS GuardDuty, FAQ is the best place to start from. I am currently working on a GuardDuty relevant project, and here are some bullets that I quickly summarised. Hope it is useful to you. GuardDuty is AWS managed continuous thread detection service. It detects the threads by analysing the VPC Flow … Continue reading New to AWS GuardDuty?

Redis CPU Usage Ramps Up after Kernel Patching

I guess you have heard the name of Meltdown and Spectre already. If not, check out this site Definitely, it is not a good start of a New Year. All Cloud providers are busy with patching the kernel of their underlying systems. AWS Elastic cache (Redis) is one of them. Due to its single threaded nature, … Continue reading Redis CPU Usage Ramps Up after Kernel Patching

Openssl error: SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol

If you see similar errors as below when using openssl to test a https site, it is most likely caused by the SNI that is configured in the reverse proxy or server, like Nginx. openssl s_client -connect CONNECTED(00000003) 51089:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:/BuildRoot/Library/Caches/ To make it work, you need to specify the hostname in the command, … Continue reading Openssl error: SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol