MOSE - Using Configuration Management for Evil

Explore the world of malicious configuration management in this 23-minute conference talk from BSidesSF 2020. Dive into the capabilities of Master Of SErvers (MOSE), a post-exploitation tool designed to leverage configuration management servers for widespread system compromise. Learn how MOSE enables attackers to take control of multiple machines simultaneously using a single command, bypassing the need for tool-specific knowledge. Gain insights into the potential risks associated with configuration management servers and understand the importance of securing these critical infrastructure components. Discover the techniques employed by MOSE to exploit vulnerabilities in configuration management systems, providing valuable knowledge for both offensive security professionals and defenders looking to enhance their network protection strategies.

BSidesSF 2020 - MOSE: Using Configuration Management for Evil (Jayson Grace)