Securosis - Labs

We think it's important to keep our hands dirty with technology.

As analysts it is all too easy to fall into the trap of losing technical skills and start relying only on what people tell you. Some of this work is for clients and has to remain confidential, but on occasion we are able to release the results or talk about them in public. Securosis Labs is the home for these projects.

Trinity

Trinity is an in-development product for cloud security automation and orchestration. The current version is based on two years of research and two years of development effort. Trinity is self funded and about 80% complete. Due to the lack of external funding we do not have a release date but the project is still active. Here is a video demonstrating actual workflows running on a real cloud deployment. There is a little bit of user interface mockup in the first few seconds but the rest of the video is running code, not a merely a visual demo.

Public Code Repository

Securosis Public Code On GitHub
- https://github.com/securosis
- Some of these projects are out of date and there for historical purposes, but others are still active. You will also notice some GitHub repos for writing projects as part of our Totally Transparent Research process.

All feedback and contributions are always appreciated.

Our Primary Current Projects

Lambda Examples
- https://github.com/Securosis/LambdaExamples
- AWS Lambda code for security automation.

Trinity Tools
- https://github.com/Securosis/TrinityTools
- A collection of command-line versions of workflows destined for Trinty, if we ever get to release it.

BlackHat Labs
- https://github.com/Securosis/BlackHatLabs
- Code we use when running our cloud security training classes.