AWS Privilege Escalation and Lateral Movements in Cloud Security
Offered By: DevSecCon via YouTube
Course Description
Overview
Explore advanced AWS cloud security techniques in this comprehensive DevSecCon conference talk. Delve into the intricacies of privilege escalation and lateral movement attacks within AWS environments, starting from initial access points. Learn how to exploit vulnerabilities like SQLi, RFI, Command Injection, and SSRF to gain entry, then leverage these footholds to escalate privileges and navigate complex cloud infrastructures. Discover the power of "nuvola," an open-source tool developed by Prima Assicurazioni, which creates a digital twin of AWS environments for enhanced threat detection. Gain valuable insights into effective initial access techniques, strategies for identifying and exploiting privilege escalation paths, and practical applications of "nuvola" for securing AWS accounts. Elevate your cloud security expertise and develop a proactive approach to safeguarding AWS ecosystems against sophisticated attacks.
Syllabus
AWS Privilege Escalation and Lateral Movements
Taught by
DevSecCon
Related Courses
OWASP Top 10 - A10:2021 - Server-Side Request Forgery (SSRF)Cybrary Popular Web Attacks - XSS, CSRF, SSRF, SQL Injection, MIME Sniffing, Smuggling and More
Hussein Nasser via YouTube API-Induced SSRF - How Apple Pay Scattered Vulnerabilities Across the Web
Black Hat via YouTube A New Era of SSRF - Exploiting URL Parser in Trending Programming Languages
Black Hat via YouTube SSRF PWNs - New Techniques and Stories
Hack In The Box Security Conference via YouTube