Hardening AWS Environments and Automating Incident Response for AWS Compromises

Explore cloud-based incident response techniques and AWS environment hardening in this 46-minute Black Hat conference talk by Andrew Krug and Alex McCormack. Learn how to programmatically collect evidence and quarantine instances during cloud-based incident response, while understanding the risks associated with compromised API keys. Discover tools for automating forensic evidence collection from compromised hosts and gain insights into proper AWS environment configuration. Understand the differences between cloud and traditional on-premise incident response procedures, and acquire knowledge on mitigating risks through effective monitoring and configuration practices.

Hardening AWS Environments and Automating Incident Response for AWS Compromises