How does HashiCorp Boundary pair with Cmd's eBPF monitoring solution for Linux?
Jan 29 · 3 min read
Cmd Advisory: (Baron Samedit) Sudo Exploit CVE-2021-3156
By: Jake King & Shashank KS
Sudo bug delivers an easy to exploit privilege escalation vulnerability for any system user. In July of 2011, a privilege escalation vulnerability was added to the Linux sudo program (Versions Ubuntu 20.04 (Sudo 1.8.31), Debian 10 (Sudo 1.8.27), and Fedora 33 (Sudo 1.9.2) and lay dormant until researchers at Qualys identified it and published their…
Oct 22 · 10 min read
2020 Shook Up Secure Remote Access and Monitoring… Here’s What You Can Do About It
By: Sean Blanton
Jake King and CTO Mike Sample discuss the latest release from HashiCorp, how Cmd and Boundary work together and reflect on the sophistication of Drovorub.
Oct 16 · 4 min read
Making BPF easy with libbpf and Zig
By: Matt Knight
Heads up, this is a fairly detailed deep dive into some of what libbpf does and knowledge on BPF is required. Luckily I have you covered 🙂
Latest Tweets
Did you get a chance to #patch #CVE-2021-3156? Take a look at how easy it is to find if anyone has exploited the vulnerability. or run a test in your environment using Cmd free: https://cmd.com/blog/cmd-advisory-baron-samedit-sudo-exploit-cve-2021-3156/
@abhaybhargav Some ideas to explorer are here: https://speakerdeck.com/omerlh/hacking-monitoring-for-fun-and-profit
Also, highly recommending to look into @cmd_security those folks are really awesome!
2020 was undoubtedly a challenging year! We're so glad to see that BC's @kluein, @DamonMotorcycle, @cmd_security, @unbounce, and @aspectbiosys were able to continue building leading tech and thrive through last year. đź‘Źđź‘Ź https://betakit.com/review-of-11-canadian-tech-companies-to-watch-in-2020/
Subscribe
The latest in Linux defense, delivered to your inbox. Subscribe to know more about upcoming data
You May Also Like
Four Risky Linux Development Behaviors to Stop Now
Linux’s flexibility means common developer behaviors can introduce serious security issues. We identify four scenarios and what you can do to avoid them.
The Dual-Role of Cmd to Support Ops and Security in Production Linux
This episode of the Risky Business podcast has Adam Cardillo and Curtis Simpson of HPE ITOC discuss the dual role Cmd plays in their Linux environments.
What data does Cmd collect?
Cmd collects data about what happens on your Production Linux servers, but do you know how that data is structured, or what it contains? Read to find out.
Cmd Advisory: “Drovorub” Linux Malware Strain
The National Security Agency and Federal Bureau of Investigation detail a previously undisclosed Linux malware strain named “Drovorub.”
3 Ways ChatOps for Permissions Improves Security
In this post, we explore some of the core ways that integrating ChatOps as part of permissions processes can improve security—and more.
Four Steps to Getting Your Linux Cloud Audit-Ready
TL;DR: Compliance can be a huge point of stress for cloud-first companies. In this co-written article with Audit Liaison, we’re sharing a handful of core actions to get your cloud audit-ready. Back in the “good” old days, audits involved much less data and way more paper. Today, a compliance audit can encompass massive amounts of…
Activate Today
Gain best-in-class Linux observability in minutes... for free_
Cmd provides the fastest, easiest way to know what’s happening in your Linux environment, who’s logging in, and what they are doing.
Activate Your Free Account arrow_forward
