From 3e959d31c309eb491bc1c7ef1e939f0e10fd1117 Mon Sep 17 00:00:00 2001
From: jassi <jassics@gmail.com>
Date: Thu, 13 Jan 2022 22:52:00 +0530
Subject: [PATCH] two new blogs on AWS vulenrabilty added

---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index 6f2dd2e..ba474bd 100644
--- a/README.md
+++ b/README.md
@@ -98,6 +98,8 @@ And don't forget to **bookmark AWS Security bulletin** for new vulnerabilities n
 21. [AWS IAM Exploitation](https://sra.io/blog/aws-iam-exploitation/)
 22. [S3 Pentest by Rhino Security Labs](https://rhinosecuritylabs.com/penetration-testing/penetration-testing-aws-storage/)
 23. [How an Attacker Could Use Instance Metadata to Breach Your App in AWS](https://www.mcafee.com/blogs/enterprise/cloud-security/how-an-attacker-could-use-instance-metadata-to-breach-your-app-in-aws/)
+24. [Orca Security Research Team Discovers AWS CloudFormation Vulnerability](https://orca.security/resources/blog/aws-cloudformation-vulnerability/)
+25. [Orca Security Research Team Discovers AWS Glue Vulnerability](https://orca.security/resources/blog/aws-glue-vulnerability/)
 
 ## Online Courses (Paid/Free)
 1. [AWS Fundamentals: Address Security Risks](https://www.coursera.org/learn/aws-fundamentals-addressing-security-risk) - Coursera