YoVDO

So You Think You Can Secure Your Cloud - Red Team Engagements in GCP

Offered By: Security BSides San Francisco via YouTube

Tags

Security BSides Courses Cloud Security Courses Privilege Escalation Courses Command and Control Courses Adversary Simulation Courses

Course Description

Overview

Dive into a comprehensive 51-minute conference talk from BSidesSF 2022 exploring red team engagements in Google Cloud Platform (GCP). Learn advanced techniques for adversary simulations, including initial access, persistence methods, privilege escalation, and leveraging Google's products for command and control. Discover strategies for manipulating firewall rules, compute instances, and abusing Key Management Service and Google Cloud Storage for data decryption and exfiltration. Gain valuable insights into cloud security from experts Brad Richardson and Madhav Bhatt as they guide you through the intricacies of securing GCP environments against sophisticated attacks.

Syllabus

Intro
DISCLAIMER!!
GCP 101
Persistence via SSH Key
Persistence via Service Account
Persistence via Start-up Script
SSH via Browser
Continued: Persistence on Project
Persistence on Organization
Enter gepHound
Privilege Escalation and Persistence
Continued: Command & Control
Continued: Lateral Movement
Data Exfiltration
Data Decryption
Closing Remarks
Questions ..!!??


Taught by

Security BSides San Francisco

Related Courses

I Simulate Therefore I Catch - Enhancing Detection Engineering with Adversary Simulation
YouTube Embrace the Red - Enhancing Detection Capabilities with Adversary Simulation
YouTube Ferris Bueller's Guide to Abuse Domain Permutations
Security BSides San Francisco via YouTube ICS OSINT - An Attacker’s Perspective
RSA Conference via YouTube Cracking the Perimeter with SharpShooter - Dominic Chell - Hack in Paris - 2019
Hack in Paris via YouTube