Public Cloud Environments can make things, well, rather public. While there are ways to prevent this, and the cloud providers have made strides, retroactive changes are not a thing. As such, we still find very poorly configured environments today.
Join us for this first of eight workshops in the Aviata Solo Flight Challenge Workshop series where you’ll learn how to look at a target organization's misconfigured public items. This lab will begin by showing you how to obtain a user's account number; you can further look for public items in different storage environments. Finally, you will be able to take advantage of and find additional items within the environment.
Learning Objectives:
- Modeling attack groups that are currently untracked but are compromising cloud assets
- Look at the attack surfaces and how to discover open buckets, open images, open snapshots which could lead to sensitive information leakage
- Learn to how to detect and harden these environments
About the Speaker:
Moses Frost is a seasoned security professional with over 15 years in the IT industry. He has held positions as a network engineer, network architect, security architect, platform engineer, site reliability engineer, and consulting sales engineer. He has a background in complex network systems, systems administration, forensics, penetration testing, and development. He has worked with some of the largest companies in the nation as well as fast-growing, bootstrap startups.
This workshop supports content and knowledge from SEC588: Cloud Penetration Testing. Learn more about the course at www.sans.org/u/1wkX
SANS Cloud Security focuses the deep resources of SANS on the growing threats to The Cloud by providing training, GIAC certification, research, and community initiatives to help security professionals build, deploy and manage secure cloud infrastructure, platforms, and applications.
SANS Cloud Security Curriculum: www.sans.org/cloud-security
GIAC Cloud Security Certifications: www.giac.org/focus-areas/clou...
LinkedIn: sanscloudsec
Discord: www.sansurl.com/cloud-discord
Twitter: @SANSCloudSec