InSpec GCP Deep Dive

As recently announced Chef has deepened support for Google Cloud Platform (GCP) by adding InSpec integration. Furthermore, the InSpec GCP resource pack is freely available here – suggestions (and contributions) welcome! Before looking at InSpec GCP let’s ensure we have the necessary prerequisites in place. As an aside, we will be following similar setup steps to […]

Read More

Accelerating time to productivity with Chef Automate using OpsWorks for Chef Automate

At ChefConf 2018 in Chicago last month Arun Gupta, AWS Principal Open Source Technologist, showcased how you can check for compliance of worker nodes in a Kubernetes cluster using OpsWorks for Chef Automate (OWCA). As part of the conference, AWS open sourced the code used; Give it a try! you can download the code here. […]

Read More

Automatically Generating InSpec Controls from Terraform

InSpec-Iggy, or “Iggy” for short, is a new plugin for InSpec that generates InSpec compliance profiles from Terraform .tfstate files (and eventually AWS CloudFormation and Azure Resource Manager templates). Iggy was originally inspired by Christoph Hartmann’s inspec-verify-provision repository and the associated blog post on testing Terraform with InSpec. With the release of InSpec 2.0 and the addition […]

Read More

Chef Automate 2 – A Modern Platform for Continuous Automation

We are delighted to announce the general availability of Chef Automate 2, a major upgrade to our continuous automation platform. Chef Automate 2 is the culmination of a nine month re-architecture initiative to improve performance, scale and responsiveness. A refreshed UI allows you to see all infrastructure and compliance events in one interface and most […]

Read More

Relativity’s Cloud Theory Becomes Reality with Azure, Chef, and 10th Magnitude

Bringing your companies platform to the cloud with the goal of developing software with speed requires a solid strategy and key partner integration. Relativity, an e-discovery platform for litigation, internal investigations, and compliance projects, realized together with Microsoft Azure, Chef Automate, and 10th Magnitude, this could be a reality. In 2016, Relativity was working to […]

Read More

Augment your Audits with InSpec 2.0

InSpec is a powerful framework for automating the testing and auditing of environments you manage. With the recent release of InSpec 2.0, it’s gotten even better with various performance improvements, extra resources, and for the first time, the ability to scan not only servers, but cloud endpoints with new AWS and Microsoft Azure resources. Last […]

Read More

Chef’s Approach to CIS Critical Security Controls v7.0

The Center for Internet Security (CIS) have just released the latest version of the Critical Security Controls, designed to provide patterns and practices to help protect organizations and data from cyber attacks. These updated controls have been developed based on feedback from actual cyber attacks faced by organizations using input from a wide spectrum of […]

Read More