Blog Entries

07. 07. 2026 Antonio Cerullo Automation, Microsoft

Automating BIOS Password Management on Dell Laptops via SCCM (with 90-Day Rotation)

Why We Decided to Address This At some point while reviewing our endpoint security posture, we realized that BIOS protection was one of those areas we tend to take for granted rather than actually verify. This was the situation we encountered: • No BIOS password configured• Unrestricted access to BIOS settings• External boot still enabled…

Read More
30. 06. 2026 Alessandro Valentini Automation, DevOps, Kubernetes, Uncategorized

K8s Secrets: Why We Migrated from SealedSecrets to ExternalSecrets

For a long time, Sealed Secrets was our go-to solution for managing confidential data like database credentials, tokens and private keys within Kubernetes. However, as our operations grew, the operational overhead of this approach led us to migrate to External Secrets. This transition has significantly streamlined our workflow, enhanced our security posture during credential rotations,…

Read More
22. 06. 2026 Gabriele Bocchi Automation, Development, DevOps

Your GitHub Organization Is Infrastructure Too

In a previous post, I wrote about the challenges of building a public GitHub organization correctly: The need for structure, consistency, and enforcement rather than relying on memory. What I didn’t cover was how we actually solved it. The short answer: We treat the organization as infrastructure. Repositories, teams, branch protection rules, labels, permissions, all…

Read More
20. 05. 2026 Marco Fazio Automation, Blue Team, SEC4U

Device Isolation with SOAR

SOAR for Controlled Response SOAR is often described in broad terms: orchestration, automation, response, integration. That’s true, but it can also feel vague. A simpler way to explain it is this: SOAR helps a SOC turn a decision into action without repeating the same manual steps every time. This matters most when the action is…

Read More
30. 03. 2026 Valentina Da Rold Atlassian, Automation

Automating Confluence Page Status at Scale: A Practical Workaround

I recently faced a challenge that many large organizations run into when scaling their use of Atlassian Confluence. I needed to create an automation that would automatically change the page status under specific conditions – for every page created or updated across more than 600 spaces. The Problem Out of the box, Confluence provides a…

Read More
27. 03. 2026 Gabriele Bocchi Automation, Development, DevOps, NetEye

From Private to Public: Building a Secure GitHub Organization

Creating a GitHub organization is easy. Creating a public one that is actually well-structured, secure, and maintainable over time… not so much. At the beginning, it feels like a simple task: create the org, push some repositories, maybe define a couple of teams, and you’re done. But as soon as things become public, the whole…

Read More
18. 03. 2026 Francesco Belacca Automation

Thanks EU: LinkedIn Finally Gave Me My CV Data

TL;DR The Challenge LinkedIn is my single source of truth for professional experience. Every new role, certification, or skill update goes there first. A person’s CV should reflect those changes automatically – not weeks later when he or she remembers to manually copy information across formats and through different portals. The idea was simple: build…

Read More
27. 01. 2026 Simone Ragonesi Automation, Development, DevOps, Offensive Security, Red Team, SEC4U

Architecting a Portable Red Team Engine

This is the first article in the RTO series The Problem Red team and penetration testing activities are full of repetition: the network scans, reconnaissance, OSINT collection, and routine validation tasks are all necessary, but they’re also time-consuming and error-prone when executed manually. Over time, most teams end up with a zoo of scripts, half-maintained…

Read More
30. 12. 2025 Damiano Chini Automation, Development, Log Management, Log-SIEM, NetEye

Optimizing Rolling Restarts in Elasticsearch Clusters

Introduction For on-premise Elasticsearch installations, performing a rolling restart across a cluster can be a time-consuming task, especially when dealing with large clusters. Rolling restarts are typically required when changing node configurations or upgrading the cluster to a new version. Elastic provides an official procedure to ensure service continuity during this process. However, after analyzing…

Read More
28. 12. 2025 Paolo Seghetti Automation, Business Service Monitoring, Icinga Web 2, NetEye, Service Management

Automating Notifications in NetEye

Today we continue our journey into monitoring automation in NetEye. In my previous post we discussed the possibility of automating Business Processes. As you may remember, for those of us working on NetEye Cloud monitoring dozens of clients, it’s important to be able to standardize and automate the creation of BPs to have a consistent…

Read More
18. 12. 2025 Gabriele Bocchi Automation, Development, NetEye

From Patch to Package: How a Small Fix Becomes a Trusted RPM

At first glance, rebuilding an RPM may sound like a purely mechanical task: take a patch, rebuild the package, ship it. In reality, that small fix goes through a much longer journey that touches reliability, security, trust, and long-term maintainability. In this article, we’ll walk through what really happens when a tiny upstream patch needs…

Read More
30. 09. 2025 Gabriele Bocchi Automation, Development, DevOps

How to Set Up Safe, Automatic Dependency Updates in Your Projects

Dependencies (frameworks, modules, plugins, etc.) are the lifeblood of modern software libraries. But managing them manually is a burden. By automating dependency updates (in a controlled, smart way), you can stay ahead of security issues, reduce technical debt, and make upgrades less painful. Below I’ll walk you through why automatic updates matter, what to watch…

Read More
18. 07. 2025 Tobias Goller Automation, Cloud

Running SOS Berlin JobScheduler in Containers: A Step Toward Cloud-Native Scheduling

As enterprises move toward containerization and microservices, traditional job schedulers are often left behind. However, many organizations still rely on tried-and-true tools like SOS Berlin’s JobScheduler (now known as JADE under the JOC Cockpit umbrella). The good news? With a bit of engineering effort, you can bring JobScheduler into the world of containers. In this…

Read More
30. 06. 2025 Luigi Miazzo Automation, Development

Exploring n8n – A Fresh, Flexible Automation Tool for Developers and Business Teams

Hi! Today I want to talk to you about a nice tool that I stumbled upon in recent weeks: n8n. In these days automation has become a key driver for efficiency and innovation. From streamlining repetitive tasks to connecting disparate systems, businesses and developers are turning to automation platforms to save time and reduce human…

Read More
30. 06. 2025 Oscar Zambotti Automation, Development, DevOps

“Pipeline as Code” Quest Unlocked: A Grizzled Beginner Leveling Up in CI/CD

After 17 years in software development, mostly crafting UIs (do you know Google Web Tookit? Or Angular, since version 1? And now Vue.js? I do), occasionally diving into mobile apps, and even wearing the sysadmin hat, I thought I’d seen my fair share of tech. But recently, I stepped into a completely new arena: Pipeline…

Read More

Archive