AWS CloudTrail is an essential service that records user actions and systems events. This is the first post of a series that demonstrates how to leverage CloudTrail to identify the IAM principal and establish timelines. This post is focused on same account access.

Whether you are troubleshooting or investigating something on AWS, being able to look up user identity across the Cloudtrail event logs can be very helpful.

All you need to know about OTP from a security perspective.

This post is my collection of articles related to threat modeling and Microsoft STRIDE threat model.

Review the differences and similarities between the two protocols from an architecture and security perspective.