Maxime Coquerel's Avatar

Maxime Coquerel

@zigmax.bsky.social

Cloud Security Geek ! | #CNCF Ambassador | Microsoft #MVP #Azure & #Security | Cloud Security Vulnerability Research | #AI #CloudSecurity #Kubernetes #SecOps Blog: zigmax.net

60 Followers  |  71 Following  |  53 Posts  |  Joined: 30.10.2024  |  1.7859

Latest posts by zigmax.bsky.social on Bluesky

Post image

Welcome #KubeCon! 🀩

09.11.2025 23:21 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

What a ride at #CloudNativeRejekts NA 2025 in Atlanta! ⚑
Deep-tech talks, AI breakthroughs, and hardcore #Kubernetes security insights, all powered by an incredible community.
Full recap πŸ‘‰Β zigmax.net/cloud-native-r…
Next stop: #KubeCon πŸš€ #CloudNative #CloudSecurity

09.11.2025 23:19 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Ready!! 🀩 #Rejekts2025

08.11.2025 15:27 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

On my way to #KubeCon + #CloudNativeCon North America! πŸ›«

07.11.2025 14:27 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image

Super excited to be part of #DevFest Montreal 2025! Can’t wait to connect, learn, and share ideas with the community. πŸš€

01.11.2025 13:37 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

3 WEEKS AWAY! πŸš€

Cloud Native @rejekts.io is the essential FREE, in-person event on Nov 8 in Atlanta, GA. Explore hidden technical gems that you won't want to miss.

Get your free ticket ➑️ cloud-native.rejekts.io

18.10.2025 19:12 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image

Orbit is a CLI tool that unifies the discovery of and access to the managed #Kubernetes clusters across different cloud providers (AWS EKS, Azure AKS, and Google GKE). It adds newly discovered clusters to your existing kubeconfig.

gitlab.com/RMJx1/orbit

// Source: #Kubernative Telegram channel

16.10.2025 13:45 β€” πŸ‘ 4    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
KubeCon + CloudNativeCon North America 2025 Co-Located Event Deep Dive: KyvernoCon This is the very first KyvernoCon! While Kyverno has been part of the CNCF since November 2020, and has had a strong presence at past KubeCon events through policy as code focused talks…

KyvernoCon is here! πŸŽ‰
An inaugural event for the #policyascode community, co-located with #KubeCon + #CloudNativeCon NA 2025.

Connect with contributors, hear real-world stories, and see how Kyverno is scaling beyond Kubernetes.

πŸ› οΈ Join us β†’ www.cncf.io/blog/2025/09...

#Kyverno #CNCF #CloudNative

18.09.2025 21:22 β€” πŸ‘ 5    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Post image

Excited to join #BSidesMontreal today!

13.09.2025 13:06 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

🀩🀩 ! #CNCF Meetup #QuebecCity!

10.09.2025 22:39 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Kubernetes Escape Room Kubernetes Escape Room: A tool that analyzes Kubernetes Pod manifests to identify potential container escape vulnerabilities and provides security recommendations for mitigation.

#Kubernetes Escape Room partyrock.aws/u/bernardoor...

10.09.2025 00:02 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Data Exfiltration through S3 Server Access Logs - Hacking The Cloud Exfiltrate data via S3:GetObject and S3 server access logs.

Ever thought of using S3 server access logs for data exfiltration? If you control an IAM identity with `s3:GetObject`, you could receive log details including denied requests alongside the data you aim to exfiltrate. It's a unique take on cloud security worth exploring. Learn more:

04.09.2025 14:03 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Breaking Boundaries - Kubernetes Namespaces and multi-tenancy AmberWolf Security Research Blog

Breaking Boundaries - Kubernetes Namespaces and multi-tenacy blog.amberwolf.com/blog/2025/se... #cloudsecurity #kubernetessecurity

01.09.2025 11:35 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Kubernetes 1.34: Top Security Features & Enhancements - ARMO Improve your cloud security with the latest upgrades in Kubernetes 1.34, from mutual TLS and token hardening to CEL-based admission policies

Kubernetes 1.34 security features www.armosec.io/blog/kuberne... #KubernetesSecurity #CloudSecurity

23.08.2025 09:34 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Backdoor on S3 using bucket policy While exploring the labs provided by Cybr, I came across one focused on Backdoor execution on S3β€Šβ€”β€ŠBackdooring an S3 Bucket via its Bucket…

Backdoor on s3 policy #cloudsecurity medium.com/@akarshad428...

23.08.2025 07:31 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Another ECS Privilege Escalation Path ECS has a range of known privilege escalation vectors. We discovered another which relies on using functionality designed for the ECS agent to self-register a compromised EC2 and override a task defin...

labs.reversec.com/posts/2025/0...

20.08.2025 13:42 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Want more Platform Engineering content? Our friends @kubecrash.bsky.social are hosting a free, virtual conference on Tuesday, September 23rd! Get practical insights from speakers like Dima Shevchuk (Grammarly) & Lisa Shissler Smith (formerly Netflix).

Register now: kubecrash.io

19.08.2025 13:26 β€” πŸ‘ 4    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
Build a Small Language Model (SLM) From Scratch At this current phase of AI evolution, any model with fewer than 1 billion parameters can be called a small language model. If we look at…

Build a small language model from scratch #AI #SLM medium.com/@shravankoni...

19.08.2025 13:50 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
GitHub - NetSPI/ATEAM Contribute to NetSPI/ATEAM development by creating an account on GitHub.

ATEAM: Azure Tenant Enumeration and Attribution Module #cloudsecurity github.com/NetSPI/ATEAM

17.08.2025 06:50 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
DefCon 33 Kubernetes CTF Writeup My solutions for the Kubernetes CTF at DefCon 33

skybound.link/2025/08/defc... #Kubernetes #cloudsecurity #defcon33

13.08.2025 11:19 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Want to help make Kubernetes better? If you run multiple clusters, the community would like to learn from you! Check out the survey!

12.08.2025 14:44 β€” πŸ‘ 4    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
ECScape: Understanding IAM Privilege Boundaries in Amazon ECS ECScape: Understanding IAM Privilege Boundaries in Amazon ECS

#ECScape www.sweet.security/blog/ecscape...

10.08.2025 08:22 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
EC2 Privilege Escalation Through User Data - Hacking The Cloud How to escalate privileges on an EC2 instance by abusing user data.

Explore how misusing EC2 user data can lead to privilege escalation. If you have `ec2:ModifyInstanceAttribute` permissions, you can execute custom scripts as root on EC2 instances. This involves modifying user data and leveraging cloud-init to execute scripts at boot. Details here:

07.08.2025 14:04 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
GitHub - keisku/kubectl-explore: A better kubectl explain with the fuzzy finder A better kubectl explain with the fuzzy finder. Contribute to keisku/kubectl-explore development by creating an account on GitHub.

Kubectl-explorer github.com/keisku/kubec...

05.08.2025 21:21 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Cloud Native Rejekts NA (Atlanta) 2025 Schedule, talks and talk submissions for Cloud Native Rejekts NA (Atlanta) 2025

πŸ“£We're excited to announce that #Rejekts will take place on Nov. 8 as a one-day event before KubeCon AtlantaπŸŒ†

πŸ“œCFP is now openπŸ‘‰πŸ½ tinyurl.com/e6bkfpd8

πŸ””We look forward to receiving your rejekted proposals until 11th Aug 23:59 PM ET!

28.07.2025 12:40 β€” πŸ‘ 13    πŸ” 6    πŸ’¬ 0    πŸ“Œ 2
Preview
GitHub - alex-ilgayev/MCPSpy: MCP Monitoring with eBPF MCP Monitoring with eBPF. Contribute to alex-ilgayev/MCPSpy development by creating an account on GitHub.

MCPSpy - Real-time monitoring for Model Context Protocol communication using eBPF github.com/alex-ilgayev... #AISecurity #CloudSecurity

28.07.2025 12:57 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
GitHub - ovh/shai: shai is a coding agent, your pair programming buddy that lives in the terminal. Written in rust with love <3 shai is a coding agent, your pair programming buddy that lives in the terminal. Written in rust with love <3 - ovh/shai

Petit tool #AI du jour, made by #OVHcloud (merci @aurelievache.bsky.social pour la dΓ©couverte): github.com/ovh/shai

26.07.2025 08:36 β€” πŸ‘ 22    πŸ” 7    πŸ’¬ 2    πŸ“Œ 1
Preview
Steal IAM Credentials and Event Data from Lambda - Hacking The Cloud Leverage file read and SSRF vulnerabilities to steam IAM credentials and event data from Lambda.

Discover common vulnerabilities in AWS Lambda that allow attackers to access IAM credentials and event data. These incidents often exploit file read and SSRF vulnerabilities. Learn how attackers can leak sensitive information and how to protect your environments. Read more:

24.07.2025 14:02 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image

Humbled and excited to be renewed as a Microsoft MVP for the 9th consecutive year! πŸš€ This recognition belongs to the incredible tech community that keeps pushing me to grow and give back. Let’s keep building, sharing, and securing together! #MicrosoftMVP #MVPBuzz #Azure #CloudSecurity #CloudNative

10.07.2025 15:20 β€” πŸ‘ 4    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
The Future of Threat Emulation: Building AI Agents that Hunt Like Cloud Adversaries Exploring the breakthrough potential and emerging risks of AI agents that can autonomously discover and exploit complex AWS attack chains.

www.offensai.com/blog/the-fut... #AISecurity #CloudSecurity

29.06.2025 16:08 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@zigmax is following 20 prominent accounts