Arkadiy Tetelman

About:

Arkadiy Tetelman is a Security Architect in San Francisco with a background in application and infrastructure security.

Website:

arkadiyt.com

Specializations:

Backend Engineer Security Architect Head of Application & Infrastructure Security Head of Security Application Security Cybersecurity Expert

Interests:

Application Security Infrastructure Security Computer Science Applied Mathematics

Incoming Links:

Guilherme Ananias ramimac
Subscribe to RSS:
Link

0Reverse Engineering Protobuf Definitions From Compiled Binaries

2025-02-05

The post explains how to reverse engineer protobuf definitions from compiled binaries using the protodump CLI. It details how protobuf supports runtime reflection and the strategy for extracting protobuf definitions from binaries....

0Detecting Manual AWS Actions: An Update!

2025-02-05

The post provides an update on detecting manual AWS actions, focusing on a new trigger mechanism, an updated list of filtered IAM actions, and detecting session name bypasses. The author emphasizes the importance of detecting manu...

0Scanning your iPhone for Pegasus, NSO Group's malware

2025-02-05

The Guardian recently published an exposé about Pegasus, a toolkit for infecting mobile phones that is sold to governments around the world by NSO Group. Amnesty International wrote a blog post with their forensic analysis of seve...

0Getting Partial AWS Account IDs for any Cloudfront Website

2025-02-05

Amazon released a new Cloudfront API that returns partial AWS account ids and Cloudfront distribution ids associated with some given domain name. The API helps to determine which of your own AWS accounts serves traffic for that do...

0A Summary of Zoom's Bad Security Month

2025-02-05

Zoom has faced scrutiny over security and privacy issues due to the increase in usage during the global pandemic. The issues include default meeting settings, use of Facebook SDK, false claims of end-to-end encryption, leaking of ...

0Detecting Manual AWS Console Actions

2025-02-05

The post describes a set of AWS Cloudtrail alerting rules to detect manual changes in the AWS Console. It discusses the motivation behind the need for such alerting, the challenges in detecting manual changes, and the conditions f...

0Pair Locking your iPhone with Configurator 2

2025-02-05

The blog post discusses the process of pair locking an iPhone to prevent law enforcement from using forensics tools against the phone. It explains why pair locking is important, how it works, and provides detailed instructions on ...

0Quantifying Untrusted Symantec Certificates

2025-02-05

The blog post discusses the reasons behind Google's decision to distrust Symantec TLS certificates and the process of scanning for bad Symantec certificates. It also provides the results of the scan, revealing that a significant n...

0Deploying EFF's Certbot in AWS Lambda

2025-02-05

The post describes the steps needed to deploy Certbot inside AWS Lambda, which is now powering 100% automated TLS certificate renewals for the author's website. The post is broken down into 3 sections: building a self-contained, d...