Benson - Security Engineer

Benson - Security Engineer https://bmacharia.com//blog The enigma of security engineering is mastering the art of anticipating the unknown. en-us bm@bmacharia.com (Benson Macharia) bm@bmacharia.com (Benson Macharia) Sun, 16 Nov 2025 00:00:00 GMT https://bmacharia.com//blog/devsecops-pipeline-sca Part 3: Software Composition Analysis (SCA) with Trivy https://bmacharia.com//blog/devsecops-pipeline-sca Conducting Software Composition Analysis (SCA) in a Jenkis DevSecOps pipeline with Trivy Sun, 16 Nov 2025 00:00:00 GMT bm@bmacharia.com (Benson Macharia) DevSecOpsTrivySCA https://bmacharia.com//blog/devsecops-pipeline-sast Part 2: Static Application Security Testing (SAST) with Semgrep https://bmacharia.com//blog/devsecops-pipeline-sast Static Application Security Testing (SAST) in a Jenkis DevSecOps pipeline with Semgrep Sun, 03 Aug 2025 00:00:00 GMT bm@bmacharia.com (Benson Macharia) DevSecOpsSemgrepSAST https://bmacharia.com//blog/aws-security-architecture-for-pci-dss-v4 Designing a PCI DSS v4 Compliant Environment on AWS https://bmacharia.com//blog/aws-security-architecture-for-pci-dss-v4 A guide to building a secure AWS Cloud environment for PCI DSS v4 compliance Sun, 15 Jun 2025 00:00:00 GMT bm@bmacharia.com (Benson Macharia) CloudPCI DSSAWS https://bmacharia.com//blog/prompt-injection-llms Beyond the Prompt: The #1 Security Risk in LLMs https://bmacharia.com//blog/prompt-injection-llms Prompt injection in LLMs, security implications and recommended mitigations Tue, 05 Nov 2024 00:00:00 GMT bm@bmacharia.com (Benson Macharia) LLMAIInjection https://bmacharia.com//blog/aws-bedrock-api-token-based-authentication AWS Bedrock: Securing LLMs with Token-Based Authentication https://bmacharia.com//blog/aws-bedrock-api-token-based-authentication Implementing token-based authentication for an AWS bedrock API on AWS SAM Sat, 17 Aug 2024 00:00:00 GMT bm@bmacharia.com (Benson Macharia) CloudIAMAILLM https://bmacharia.com//blog/devsecops-pipeline-secrets-detection Part 1: Secrets Detection in a DevsecOps Jenkins Pipeline https://bmacharia.com//blog/devsecops-pipeline-secrets-detection Configuring secrets detection in a Jenkis DevSecOps pipeline Fri, 10 May 2024 00:00:00 GMT bm@bmacharia.com (Benson Macharia) DevSecOpsComplianceSecrets Management https://bmacharia.com//blog/aws-sam-secrets-manager Secure Secrets Management on AWS SAM with Secrets Manager https://bmacharia.com//blog/aws-sam-secrets-manager Quick guide to managing secrets for serverless applications with AWS Secrets Manager Tue, 14 Nov 2023 00:00:00 GMT bm@bmacharia.com (Benson Macharia) CloudSecrets Management https://bmacharia.com//blog/eks-cloudwatch-logging API Logging on EKS with Cloudwatch https://bmacharia.com//blog/eks-cloudwatch-logging A guide to configure API logging on EKS with AWS Cloudwatch Tue, 07 Feb 2023 00:00:00 GMT bm@bmacharia.com (Benson Macharia) CloudLogging https://bmacharia.com//blog/cis-hardened-aws-ami Creating a CIS Level 1 Hardened AWS AMI https://bmacharia.com//blog/cis-hardened-aws-ami Simple guide for creating a CIS hardened AWS AMI Fri, 08 Jul 2022 00:00:00 GMT bm@bmacharia.com (Benson Macharia) CloudCompliance https://bmacharia.com//blog/cloud-for-data-protection-compliance Leveraging Cloud for Data Protection Compliance https://bmacharia.com//blog/cloud-for-data-protection-compliance Insights on using Cloud for Data Protection Compliance Fri, 01 Jul 2022 00:00:00 GMT bm@bmacharia.com (Benson Macharia) CloudData Privacy https://bmacharia.com//blog/secure-android-user-sessions Securing Android Application User Sessions https://bmacharia.com//blog/secure-android-user-sessions A guide to building secure user sessions on Android applications Wed, 25 May 2022 00:00:00 GMT bm@bmacharia.com (Benson Macharia) IAMSecrets Management https://bmacharia.com//blog/spring-boot-auth Spring Boot Authentication and Authorization https://bmacharia.com//blog/spring-boot-auth A guide to building secure user authentication and authorization in Java Spring Boot Tue, 17 May 2022 00:00:00 GMT bm@bmacharia.com (Benson Macharia) IAM https://bmacharia.com//blog/php-type-juggling Authentication Bypass Through PHP Type Juggling https://bmacharia.com//blog/php-type-juggling Demonstrating authentication bypass by exploiting PHP Type Juggling Sat, 14 May 2022 00:00:00 GMT bm@bmacharia.com (Benson Macharia) IAMBug Bounty https://bmacharia.com//blog/exploiting-blind-sql-injection Exploiting Time-Based Blind SQL Injection With SQLMap https://bmacharia.com//blog/exploiting-blind-sql-injection Demonstrating time-based blind SQL injection exploitation with SQLMap Mon, 07 Jun 2021 00:00:00 GMT bm@bmacharia.com (Benson Macharia) InjectionBug Bounty https://bmacharia.com//blog/host-header-injection-account-takeover Account Takeover Through Host Header Injection https://bmacharia.com//blog/host-header-injection-account-takeover Demonstrating account takeover through host header injection Thu, 04 Mar 2021 00:00:00 GMT bm@bmacharia.com (Benson Macharia) InjectionBug Bounty