~/courses/cloud-container-security
Cloud & Container Security
Harden the cloud, edge, and container platform your apps actually run on — VPS hosts, Docker workloads, the CDN edge, secrets and IaC — and prove it with measured posture.
// The loop
learn a threat → build the hardening control on an owned/lab system → measure posture before vs after → wire the check into CI → write it up as a reusable control + detection
// The 6-phase roadmap
- 01 Cloud threat model & shared responsibility
- 02 Container (Docker) hardening
- 03 Host & network hardening
- 04 Edge security (CDN / WAF / Zero-Trust)
- 05 Secrets, IaC & supply chain
- 06 Cloud incident response & posture monitoring
The platform-layer security course. It hardens the cloud, edge, and container substrate that real apps deploy onto: VPS hosts, Docker workloads, the CDN edge, and the secrets/IaC pipelines that glue it together — and the logs that prove it’s healthy.
Each phase ends with a measurable delta, not just notes: scan or probe before, apply the control, scan again. Offensive concepts like container escape are studied in the lab only, to understand and close the gap. All hands-on work stays on owned, lab, or explicitly authorized infrastructure.