Hi, I am Joshua Jebaraj

I am a Cloud Security enthusiast
Gopher
I love to attend/speak in conferences

Joshua Jebaraj

Security Researcher at Independent.

Joshua Jebaraj is Creator of GCP-Goat .He had also Spoken at conferences like Black-hat,Defcon,Owasp-Seasides,Bsides-Delhi,Hack in the box etc.

Skills

Programming Languages

Capable of writing programs using Golang,Python,Bash.

Devops Skills

Proficient in Linux and Networking.Experienced in Docker and Kubernetes.Skilled in Gitlab and Github CI/CD pipeline.Proficient in Infrastructure as Code (IAC) tools like Terraform and Ansible

Cyber Security

Basic proficiency in Securing CI/CD pipelines(DevSecOps) and Intermediate knowledge in Cloud(GCP) and Cloud Native Security(Kubernetes)

Experiences

Cloud Engineer

arch0

September 2023 - Present, Remote

From robust identity alignment to seamless operations, enjoy comprehensive protection tailored to your unique needs.

Responsibilities:

Architected and implemented end-to-end CI/CD automation using Terraform, Terragrunt, and GitHub Actions, reducing deployment time by 70% and eliminating manual errors across 20+ Cloud Services.
Researched and implemented Google Cloud Platform integration for the arch0 Platform including writing documentation for setup, writing backend code in the Golang and testing the integration.
Created a suite of automated internal tools and an AI-powered chatbot to enhance team efficiency .

Cloud Native Researcher

we45

July 2021 - August 2023, Remote

The Application Security Specialists.

Responsibilities:

Created the Initial version of the GCP-Sandbox which allows to create the sandbox environment for the clients.
Researched and created the training material for the appsecengineer on the various Kubernetes security concepts like Admission controller, Supply chain security etc
Lead the GCP Research team and created completely new learning courses on GCP security at appsecengineer.
Conducted cloud security audits for the various client using open source tools and help them to identify security misconfigurations and helped them to fix the misconfigurations

Devops Intern

Atlan.

August 2020 - December 2020, Remote

Atlan is a modern data workspace that helps data teams collaborate and democratize their enterprise data

Responsibilities:

Responsible for deploying the application in Kubernetes
Introduced the Security best practices for deploying the application in Cloud Native

Intern

Practical DevSecOps.

September 2019 - May 2020, Remote

Practical DevSecOps (a Hysn Technologies Inc company) offers vendor-neutral, practical, and hands-on DevSecOps training and certification programs for IT Professionals.

Responsibilities:

Created the Docker Security Course Content
Helped in creating the DevSecOps University Project

Intern

Appsecco.

May 2019 - June 2019, Banglore

Appsecco provides practical security advice and help to safeguard your organisation. Our team can help protect against all possible security risks.

Responsibilities:

Learned Mobile(Android) Security , Web Security (Owasp-top-10) and Cloud Security(AWS)
Learned to work with Docker,Git.

Projects

GCP GOAT

Creator August 2021 - Present

GCP-Goat is intentionally vulnerable GCP environment to learn and practice GCP Security

Star

Devops Upgrade

Creator April 2023 - Present

Get devops resources in a single click!

Star

Securing CI/CD

Creator May 2021 - Present

In this project I have tried to implement the Security in the CI/CD pipeline

Star

Terraform Learning

Creator May 2021 - Present

In this project I have created small project around terraform

Star

Kubernetes Shell

Creator May 2021 - Present

Kubectl shell is the Kubernetes-plugin which helps to get shell inside the container/pods

Star

Ansible-role

Creator April 2021 - Present

Ansible role to install the Gitea

Star

Docker-clean

Creator May 2021 - Present

A CLI tool which helps to remove the docker Images

Star

Docker-secrets

Creator Nov 2021 - Present

A CLI tool which helps to remove the docker Images

Star

GCP-Enum

Creator April 2021 - Present

GCP enum is the tool that helps to find the existence of the GCP buckets. This might be helpful during the pentesting or recon.

Star

Recent Posts

One year at we45

It’s been a year since I started working at we45. In this blog, I am gonna share my working experience at we45 Opportunity I have been following we45 since my college days when I started to explore DevSecOps. During my final year when I started looking for a job, I reached out to Abhay and ask him whether there are any openings in we45, to my luck, there are some openings and I applied for the same.

June 1, 2022 Read

My Mac Setup

My Mac Setup I have been using a mac as the primary driver for the past year. Being a huge sucker for productivity, I try to optimize my workflow as much as possible. In this blog, I am sharing the tools and tricks that I use to make my workflow easier and more productive(at least that what I think) Raycast The default spotlight is very minimal and gets things done, but for nerd for me it is not enough, I have used alfred for the past 7 months.

January 1, 2022 Read

Digital Ocean kubernetes challenge

Introduction Hello Friends 👋 , hope everyone doing well. In this blog we are going to see how t deploy a security and compliance system using Falco in the Digital Ocean as part of DigitalOcean Kubernetes Challenge Pre-requisite Digital Ocean Account kubectl cli tool to interact with the kubernetes helm to deploy the falco Creating the cluster Digital Ocean offers the managed Kubernetes service so we don’t have to manage the underlying infrastructure.

December 9, 2021 Read