New #CloudSecTidbits explores how misconfigured AWS ELBs can silently break security boundaries through rule shadowing, CloudFront/WAF bypasses, and alternate routing paths.

We’re also releasing ELBaph — a new read-only tool to map ELB routing graphs, detect exposed paths, and surface real-world attack chains across ALBs/NLBs.

https://blog.doyensec.com/2026/05/25/cloudsectidbits-elbaph-alb.html

#AppSec #Doyensec #AWS #CloudSecurity #AppSec #SecurityResearch