Канал: fwd:cloudsec

Ransomware Riddle: Untying Cloud Security Mysteries - Ram Pliskin

Ransomware Riddle: Untying Cloud Security Mysteries - Ram Pliskin

From Intrusion to Insight: Lessons learned from of a month long AWS compromise - Korstiaan Stam

From Intrusion to Insight: Lessons learned from of a month long AWS compromise - Korstiaan Stam

The Dark Economy of Stolen Cloud Accounts in Phishing Attacks- Alessandro Brucato & Stefano Chierici

The Dark Economy of Stolen Cloud Accounts in Phishing Attacks- Alessandro Brucato & Stefano Chierici

Get into AWS security research as a n00bcake - Daniel Grzelak

Get into AWS security research as a n00bcake - Daniel Grzelak

Is LLM all you need for Cloudtrail analysis - Rex Guo & Diane Lin

Is LLM all you need for Cloudtrail analysis - Rex Guo & Diane Lin

Cloud Service Provider Partnership Portals: A Perfect Storm Of Half-Baked IAM Controls

Cloud Service Provider Partnership Portals: A Perfect Storm Of Half-Baked IAM Controls

A practitioner's playbook to shift left & build secure serverless GenAI applications in public cloud

A practitioner's playbook to shift left & build secure serverless GenAI applications in public cloud

The Path to Zero-Touch Production - Rami McCarthy

The Path to Zero-Touch Production - Rami McCarthy

Taking Over VMs the Cloud-native Ways - Jay Chen

Taking Over VMs the Cloud-native Ways - Jay Chen

What's the Worst That Could Happen: Sharing Your AWS Account ID With the World - Jarom Brown

What's the Worst That Could Happen: Sharing Your AWS Account ID With the World - Jarom Brown

Pipeline Precognition: Predicting Attack Paths Before Apply - Brad Geesaman

Pipeline Precognition: Predicting Attack Paths Before Apply - Brad Geesaman

One extra large cloud assessment please? - Why testing at scale needs a different approach

One extra large cloud assessment please? - Why testing at scale needs a different approach

AWS Data Perimeter at USAA: Things we knew, things we thought we knew and things you should know!

AWS Data Perimeter at USAA: Things we knew, things we thought we knew and things you should know!

Balancing Security and Costs in AWS VPC Interface Endpoints - Meg Ashby

Balancing Security and Costs in AWS VPC Interface Endpoints - Meg Ashby

LUCR-3: Cloud Clepto & SaaS-y Scattered Spider Shenanigans - Ian Ahl

LUCR-3: Cloud Clepto & SaaS-y Scattered Spider Shenanigans - Ian Ahl

Responding to Sophisticated Ransom Attacks in the Cloud: A Real-World Case Study - Yotam Meitar

Responding to Sophisticated Ransom Attacks in the Cloud: A Real-World Case Study - Yotam Meitar

Hacking clouds using the power of the sun - Ian Mckay

Hacking clouds using the power of the sun - Ian Mckay

The Oracle Awakens: Demystifying Privilege Escalation in the cloud

The Oracle Awakens: Demystifying Privilege Escalation in the cloud

Normalization of CSP audit logs with open standards. How to search everywhere at once.

Normalization of CSP audit logs with open standards. How to search everywhere at once.

Making Insights Driven Decisions in an Ecosystem of Ecosystems -Prahathess Rengasamy & Stephanie Shi

Making Insights Driven Decisions in an Ecosystem of Ecosystems -Prahathess Rengasamy & Stephanie Shi

Discover the AWS Account ID of any S3 bucket - Sam Cox

Discover the AWS Account ID of any S3 bucket - Sam Cox

Don't water your AI Security frameworks garden! - Natalia Semenova

Don't water your AI Security frameworks garden! - Natalia Semenova

yubidisaster: Building Robust Emergency Admin Access to AWS Accounts

yubidisaster: Building Robust Emergency Admin Access to AWS Accounts

Hunting AWS Threat Actors with Access Analyzer Policy Suggestions - Rodrigo Montoro

Hunting AWS Threat Actors with Access Analyzer Policy Suggestions - Rodrigo Montoro

Bulletproofing Your Cloud: Lessons from inside the Borg - David Challoner

Bulletproofing Your Cloud: Lessons from inside the Borg - David Challoner

The EKS Hacking Playbook: Lessons From 3 Years of Cloud Security Research

The EKS Hacking Playbook: Lessons From 3 Years of Cloud Security Research

Illuminating Azure: Navigating Log Complexities with a Novel Key - Nathan Eades

Illuminating Azure: Navigating Log Complexities with a Novel Key - Nathan Eades

Thinking outside the cloud: Preventing cloud compromise by focusing on-premise

Thinking outside the cloud: Preventing cloud compromise by focusing on-premise

Engineering Chaos to Secure Cloud Foundations - Jonathan Walker

Engineering Chaos to Secure Cloud Foundations - Jonathan Walker

Detecting Cloud Threats with Dynamic Clouds - Nathaniel Quist & William Gamazo

Detecting Cloud Threats with Dynamic Clouds - Nathaniel Quist & William Gamazo

Open-Sourcing AWS Pentest Methodology - Lizzie Moratti

Open-Sourcing AWS Pentest Methodology - Lizzie Moratti

How a control plane fail can help you learn about Azure security - Tyson Garrett

How a control plane fail can help you learn about Azure security - Tyson Garrett

Behind the Curtain: Unmasking the Hidden APIs of Azure and Entra - Aled Mehta

Behind the Curtain: Unmasking the Hidden APIs of Azure and Entra - Aled Mehta

Freeing Identity From Infrastructure - Ian Ferguson

Freeing Identity From Infrastructure - Ian Ferguson

Trust Me Bro: Preexisting Trust is the New Initial Access Vector - Nick Frichette

Trust Me Bro: Preexisting Trust is the New Initial Access Vector - Nick Frichette

Who Touched My GCP Project? Understanding the Principal Part in Cloud Audit Logs - Gabriel Fried

Who Touched My GCP Project? Understanding the Principal Part in Cloud Audit Logs - Gabriel Fried

Intercloud Identities: The Risks and Mitigations of Access Between Cloud Providers

Intercloud Identities: The Risks and Mitigations of Access Between Cloud Providers

Welcome to fwd:cloudsec 2024! - Aaron Zollman

Welcome to fwd:cloudsec 2024! - Aaron Zollman

Cloudy with a Chance of Chaos - Kushagra Sharma

Cloudy with a Chance of Chaos - Kushagra Sharma

GCPwn: A Pentesting Tool For GCP - Scott Weston

GCPwn: A Pentesting Tool For GCP - Scott Weston

Forged in Fire: Forging Multi-Cloud Open Source Swiss-Army Knife - Toni de la Fuente & Sergio Garcia

Forged in Fire: Forging Multi-Cloud Open Source Swiss-Army Knife - Toni de la Fuente & Sergio Garcia

One Click, Six Services: Abusing The Dangerous Multi-service Orchestration Pattern - Liv Matan

One Click, Six Services: Abusing The Dangerous Multi-service Orchestration Pattern - Liv Matan

I'm Doing My Part! By Mapping Cloud Incidents to ATT&CK Techniques - Casey Knerr

I'm Doing My Part! By Mapping Cloud Incidents to ATT&CK Techniques - Casey Knerr

@forrest_brazeal Performance at fwd:cloudsec 2024!

@forrest_brazeal Performance at fwd:cloudsec 2024!

How Citi Advanced Their Containment Capabilities Through Automation - Damien Burks, Elvis Veliz

How Citi Advanced Their Containment Capabilities Through Automation - Damien Burks, Elvis Veliz

Google Cloud Threat Detection: A Study in Google Cloud - Day Johnson

Google Cloud Threat Detection: A Study in Google Cloud - Day Johnson

Vulnerabilities and Misconfigurations in GitHub Actions - Rojan Rijal

Vulnerabilities and Misconfigurations in GitHub Actions - Rojan Rijal

It's Just a Name, Right - Nathan Eades

It's Just a Name, Right - Nathan Eades

AWS Presigned URLs The Good, The Bad, and The Ugly - Jarom Brown

AWS Presigned URLs The Good, The Bad, and The Ugly - Jarom Brown

Success Criteria for your CSPM - David White

Success Criteria for your CSPM - David White

Beyond the AWS Security Maturity Roadmap - Rami McCarthy

Beyond the AWS Security Maturity Roadmap - Rami McCarthy

Welcome - Aaron Zollman

Welcome - Aaron Zollman

fwd:cloudsec State of the Union - Scott Piper

fwd:cloudsec State of the Union - Scott Piper

Swimming with the Sharks. IR Kubed. - Nathan Case, Alon Girmonsky

Swimming with the Sharks. IR Kubed. - Nathan Case, Alon Girmonsky

Unmasking the Subnet Lookalike IP Ranges in Cloud Environments - Asaf Aprozper

Unmasking the Subnet Lookalike IP Ranges in Cloud Environments - Asaf Aprozper

Stop the Bulldozers Hardening the AWS CDK deployment process - Dawn Cooper

Stop the Bulldozers Hardening the AWS CDK deployment process - Dawn Cooper

IYKYK Negotiating the Scope of Security Audits Even if You DREAD... - Jasmine Henry, George Tang

IYKYK Negotiating the Scope of Security Audits Even if You DREAD... - Jasmine Henry, George Tang

Helping developers drink from a champagne flute and not a firehose ... - Tyson Garrett, Jason Nelson

Helping developers drink from a champagne flute and not a firehose ... - Tyson Garrett, Jason Nelson

AWS Identity Center: Extending Cloudsplaining to score Users & Permission set... - Rodrigo Montoro

AWS Identity Center: Extending Cloudsplaining to score Users & Permission set... - Rodrigo Montoro

Pivoting Clouds in AWS Organizations - Scott Weston

Pivoting Clouds in AWS Organizations - Scott Weston

Operationalizing GCP’s Asset Inventory for Cloud Enlightenment - Randy Heins, Jeffrey Zhang

Operationalizing GCP’s Asset Inventory for Cloud Enlightenment - Randy Heins, Jeffrey Zhang

Scanning the internet for external cloud exposures - Nir Ohfeld, Hillai Ben-Sasson

Scanning the internet for external cloud exposures - Nir Ohfeld, Hillai Ben-Sasson

Passing The Security Burden – How To See The Unforeseen - Matthew Keogh

Passing The Security Burden – How To See The Unforeseen - Matthew Keogh

gVisor The Future of Container Security - Andy Nguyen

gVisor The Future of Container Security - Andy Nguyen

From ‘huh ’ to privilege escalation finding vulnerabilities from a bug in the AWS... - Ben Bridts

From ‘huh ’ to privilege escalation finding vulnerabilities from a bug in the AWS... - Ben Bridts

A Year of NO building organizational IAM guardrail policies that work - Noam Dahan

A Year of NO building organizational IAM guardrail policies that work - Noam Dahan

IMDS The Gatekeeper to Your Cloud Castles And How to Keep the Dragons Out - Liv Matan, Lior Zatlavi

IMDS The Gatekeeper to Your Cloud Castles And How to Keep the Dragons Out - Liv Matan, Lior Zatlavi

The Good, the Bad, and the Vulnerable: A comprehensive overview of... - Merav Bar, Amitai Cohen

The Good, the Bad, and the Vulnerable: A comprehensive overview of... - Merav Bar, Amitai Cohen

Rolling out AWS Infrastructure Everywhere with Space Ships - Mike Grima

Rolling out AWS Infrastructure Everywhere with Space Ships - Mike Grima

Billions Served Processing Security Event Logs with the AWS Serverless Stack - Josh Liburdi

Billions Served Processing Security Event Logs with the AWS Serverless Stack - Josh Liburdi

CloudFox + CloudFoxable A Powerful Duo for Mastering the Art of Identifying and... - Seth Art

CloudFox + CloudFoxable A Powerful Duo for Mastering the Art of Identifying and... - Seth Art

Tales From the Sewer A plumber’s view of building a data security platform - Christopher Webber

Tales From the Sewer A plumber’s view of building a data security platform - Christopher Webber

I Trusted You A Demonstrated Abuse of Cloud Kerberos Trust - Daniel Heinsen, Elad Shamir

I Trusted You A Demonstrated Abuse of Cloud Kerberos Trust - Daniel Heinsen, Elad Shamir

Patterns in S3 Data Access: Protecting and enhancing access to data banks, lakes,... - Josh Snyder

Patterns in S3 Data Access: Protecting and enhancing access to data banks, lakes,... - Josh Snyder

How do you set boundaries? AWS Permissions boundaries in large cloud environments - Kushagra Sharma

How do you set boundaries? AWS Permissions boundaries in large cloud environments - Kushagra Sharma

The Ins and Outs of Building an AWS Data Perimeter - John Burgess

The Ins and Outs of Building an AWS Data Perimeter - John Burgess

Evading Logging in the Cloud Disrupting and Bypassing AWS CloudTrail - Nick Frichette

Evading Logging in the Cloud Disrupting and Bypassing AWS CloudTrail - Nick Frichette

The Unholy Marriage of AWS IAM Roles and Instance Profiles - Andre Rall

The Unholy Marriage of AWS IAM Roles and Instance Profiles - Andre Rall

Fwd:cloudsec 2023 Conference Salon C - DAY 2

Fwd:cloudsec 2023 Conference Salon C - DAY 2

Fwd:cloudsec 2023 Conference Salon B - DAY 2

Fwd:cloudsec 2023 Conference Salon B - DAY 2

Fwd:cloudsec 2023 Conference Salon C - DAY 1

Fwd:cloudsec 2023 Conference Salon C - DAY 1

Fwd:cloudsec 2023 Conference Salon B - DAY 1

Fwd:cloudsec 2023 Conference Salon B - DAY 1

Dismantling the Beast: Formally Proving Access at Scale in AWS - Nick Jones & Mohit Gupta

Dismantling the Beast: Formally Proving Access at Scale in AWS - Nick Jones & Mohit Gupta

Human vs. Robot: Why you should automate your vulnerability management program - Keziah & Kadia

Human vs. Robot: Why you should automate your vulnerability management program - Keziah & Kadia

Cloudy with a chance of IoCs - Zack Allen

Cloudy with a chance of IoCs - Zack Allen

The True Power of AWS Tags - Yoav Yanilov & Itamar Bareket

The True Power of AWS Tags - Yoav Yanilov & Itamar Bareket

Evading AWS GuardDuty and Network Firewall using Privacy Enhancing tech - Dhruv AHUJA

Evading AWS GuardDuty and Network Firewall using Privacy Enhancing tech - Dhruv AHUJA

A Tacky Graph and Listless Defenders: Looking Beneath the Attack Surface - Jasmine Henry

A Tacky Graph and Listless Defenders: Looking Beneath the Attack Surface - Jasmine Henry

Real-World Detection Evasion Techniques in the Cloud - Christopher Doman

Real-World Detection Evasion Techniques in the Cloud - Christopher Doman

Stop Guessing and Start Proving: Demystifying AWS Zelkova - Kaushik Devireddy

Stop Guessing and Start Proving: Demystifying AWS Zelkova - Kaushik Devireddy

Auditing PassRole: Finding Hidden Trails of Problematic Privilege Escalation Permission - Noam Dahan

Auditing PassRole: Finding Hidden Trails of Problematic Privilege Escalation Permission - Noam Dahan

Leveraging Azure Resource Graph for Good and for Evil - Darwin Salazar

Leveraging Azure Resource Graph for Good and for Evil - Darwin Salazar

Defending against cloud cross-tenant vulnerabilities - Tzah Pahima & Yanir Tsarimi

Defending against cloud cross-tenant vulnerabilities - Tzah Pahima & Yanir Tsarimi

Achieving AWS IAM zen in a Google Cloud world - Caleb Tennis

Achieving AWS IAM zen in a Google Cloud world - Caleb Tennis

Unlocking Cloud Build Security with OIDC - Zach Steindler

Unlocking Cloud Build Security with OIDC - Zach Steindler

Security tools don’t fix security issues; people do: How to make compliance data relatable

Security tools don’t fix security issues; people do: How to make compliance data relatable

Secret Agents: Demystifying (and Pwning) Cloud Middleware - Nir Ohfeld & Rotem Lipowitch

Secret Agents: Demystifying (and Pwning) Cloud Middleware - Nir Ohfeld & Rotem Lipowitch

Welcome: Introduction to fwd:cloudsec 2022 from the organizing team - Aaron Zollman

Welcome: Introduction to fwd:cloudsec 2022 from the organizing team - Aaron Zollman

Everything you never wanted to know about flow logs - Daniel Wyleczuk-Stern

Everything you never wanted to know about flow logs - Daniel Wyleczuk-Stern

Abusing the Replicator: Silently Exfiltrating Data with the AWS S3 Replication Service - Kat Traxler

Abusing the Replicator: Silently Exfiltrating Data with the AWS S3 Replication Service - Kat Traxler

We built a community cloud vulnerability database, now what? - Alon Schindel & Amitai Cohen

We built a community cloud vulnerability database, now what? - Alon Schindel & Amitai Cohen

Cloudy With a Chance of Vulnerabilities: Finding & exploiting vulnerabilities in cloud - Sagi & Nir

Cloudy With a Chance of Vulnerabilities: Finding & exploiting vulnerabilities in cloud - Sagi & Nir

Using AI to harden cloud security by mitigating IAM configuration errors - Mikhail Kazdagli

Using AI to harden cloud security by mitigating IAM configuration errors - Mikhail Kazdagli

fwd:cloudsec Live Stream

fwd:cloudsec Live Stream

"SELECT * for the Cloud: Simplify Cloud Security and Compliance with Cloudquery" - Saurabh Wadhwa

"SELECT * for the Cloud: Simplify Cloud Security and Compliance with Cloudquery" - Saurabh Wadhwa

Standardizing Terraform Linting - Adam Cotenoff

Standardizing Terraform Linting - Adam Cotenoff

Securing Container Image Supply Chains with tools such as Goss and OpenSCAP - Chris Howarth

Securing Container Image Supply Chains with tools such as Goss and OpenSCAP - Chris Howarth

Using ATT&CK® for Containers to Level Up your Cloud Defenses - Jen Burns

Using ATT&CK® for Containers to Level Up your Cloud Defenses - Jen Burns

"Operationalizing AWS Guard Duty: A Risk Based Story" - Chester Le Bron

"Operationalizing AWS Guard Duty: A Risk Based Story" - Chester Le Bron

KISS towards ZTA and service mesh - Jacques Thomas & Dre Mahaarachchi

KISS towards ZTA and service mesh - Jacques Thomas & Dre Mahaarachchi

Why aren’t you using VPC Service Controls yet? - Ilan Ponimansky

Why aren’t you using VPC Service Controls yet? - Ilan Ponimansky

Blowing stuff up at scale with pitch perfect attack simulations - Rich Mogull and Will Bengtson

Blowing stuff up at scale with pitch perfect attack simulations - Rich Mogull and Will Bengtson

"Kubernetes Security: PSP deprecation is an opportunity for a new security model" - Ariel Shuper

"Kubernetes Security: PSP deprecation is an opportunity for a new security model" - Ariel Shuper

Bridge Your Service Mesh and AWS - Harihara K Narayanan & Santosh Ananthakrishnan

Bridge Your Service Mesh and AWS - Harihara K Narayanan & Santosh Ananthakrishnan

Automating security assessments using Cloud Katana - Roberto Rodriguez

Automating security assessments using Cloud Katana - Roberto Rodriguez

"The Enterprise Cloud Journey: Lessons learned taking organizations to cloud" - Jared Naude

"The Enterprise Cloud Journey: Lessons learned taking organizations to cloud" - Jared Naude

"Access Undenied: Automatically discovering reasons for Access Denied messages in IAM" - Noam Dahan

"Access Undenied: Automatically discovering reasons for Access Denied messages in IAM" - Noam Dahan

Permission Mining in GCP - Colin Estep

Permission Mining in GCP - Colin Estep

An Introduction to Azure Offensive Security - David Okeyode & Karl Fosaaen

An Introduction to Azure Offensive Security - David Okeyode & Karl Fosaaen

Security Guardrails at Scale in Azure - Kinnaird McQuade

Security Guardrails at Scale in Azure - Kinnaird McQuade

Has Anyone Seen the Principal - Emilian Cebuc & Christian Philipov

Has Anyone Seen the Principal - Emilian Cebuc & Christian Philipov

Challenges with Deleting AWS Accounts at scale - Andrew Alaniz

Challenges with Deleting AWS Accounts at scale - Andrew Alaniz

An Attacker's Approach to Pentesting IBM Cloud - Riyaz Walikar

An Attacker's Approach to Pentesting IBM Cloud - Riyaz Walikar

"AWS Config Rules & Remediation: Rock'em Sock'em Robots" - Scott Pack & Adam Chou

"AWS Config Rules & Remediation: Rock'em Sock'em Robots" - Scott Pack & Adam Chou

Crushing Cloud Misconfiguration MTTR Through Open Source - Steve Giguere

Crushing Cloud Misconfiguration MTTR Through Open Source - Steve Giguere

Automating AWS Privilege Escalation Risk Detection With Principal Mapper - Erik Steringer

Automating AWS Privilege Escalation Risk Detection With Principal Mapper - Erik Steringer

Managing vendor access in AWS is nearly impossible - Yoav Nathaniel

Managing vendor access in AWS is nearly impossible - Yoav Nathaniel

Audit metrics as drivers for zero trust and cloud automation - Joe Crawford & Alex Shulman

Audit metrics as drivers for zero trust and cloud automation - Joe Crawford & Alex Shulman

Least-Privilege Kubernetes Authorization with OPA - Charlie Cetin, Daniel Popescu, & Quentin Long

Least-Privilege Kubernetes Authorization with OPA - Charlie Cetin, Daniel Popescu, & Quentin Long

Mapping the AWS IAM universe - Ian Mckay

Mapping the AWS IAM universe - Ian Mckay

"OH CR&P! I think we've been breached" - Garrett Wong & Wilson Liu

"OH CR&P! I think we've been breached" - Garrett Wong & Wilson Liu

"CloudTrail Logging Internals: A Methodology For Investigating AWS Security Incidents" - Eliav Levy

"CloudTrail Logging Internals: A Methodology For Investigating AWS Security Incidents" - Eliav Levy

Supercharging Alerts using Dassana - Gaurav Kumar

Supercharging Alerts using Dassana - Gaurav Kumar

Building Blocks for Zero-Trust Internal App Defense - Maximilian Burkhardt

Building Blocks for Zero-Trust Internal App Defense - Maximilian Burkhardt

Welcome - Aaron Zollman (fwd:cloudsec 2021)

Welcome - Aaron Zollman (fwd:cloudsec 2021)

"Janus: A Multi-Party Authorization Framework" - Abhinav Srivastava

"Janus: A Multi-Party Authorization Framework" - Abhinav Srivastava

"It’s Time to Rethink the Shared Security Responsibility Model" - Matthew Fuller

"It’s Time to Rethink the Shared Security Responsibility Model" - Matthew Fuller

"Centralizing Identity across AWS, Azure and GCP" - Paul Schwarzenberger

"Centralizing Identity across AWS, Azure and GCP" - Paul Schwarzenberger

"Building Cloud Security Automation at Scale" - Rich Mogull

"Building Cloud Security Automation at Scale" - Rich Mogull

"The Usual Suspects" - James Condon

"The Usual Suspects" - James Condon

"Winning in the Dark: Defending Serverless Infrastructure" - Eric Johnson

"Winning in the Dark: Defending Serverless Infrastructure" - Eric Johnson

"Creating the AWS Account Controller — Your rules don't apply to me" - Ian Mckay

"Creating the AWS Account Controller — Your rules don't apply to me" - Ian Mckay

Welcome - Aaron Zollman

Welcome - Aaron Zollman

"GCP Primitive Roles, An indictment" - Kat Traxler

"GCP Primitive Roles, An indictment" - Kat Traxler

"What I wished someone told me before going multi-account" - Brandon Sherman

"What I wished someone told me before going multi-account" - Brandon Sherman

"Kubernetes from an Attacker's Perspective" - Abhisek Datta

"Kubernetes from an Attacker's Perspective" - Abhisek Datta

"Automating Attack Simulation in the Cloud" - Nick Jones

"Automating Attack Simulation in the Cloud" - Nick Jones

"All Your Trust Are Belong to Us" - Kesten Broughton

"All Your Trust Are Belong to Us" - Kesten Broughton

"Automating disk and memory evidence collection in AWS" - Ryan Tick and Vaishnav Murthy

"Automating disk and memory evidence collection in AWS" - Ryan Tick and Vaishnav Murthy

"Security Onion Approach Towards IAM Roles" - Narayan Gowraj

"Security Onion Approach Towards IAM Roles" - Narayan Gowraj

"Limiting Blast Radius by Automating IAM Policies using Policy Sentry" - Kinnaird McQuade

"Limiting Blast Radius by Automating IAM Policies using Policy Sentry" - Kinnaird McQuade