YoVDO

I Am Whoever I Say I Am - Infiltrating Identity Providers Using a 0-Click Exploit

Offered By: Black Hat via YouTube

Tags

Black Hat Courses Cybersecurity Courses Ethical Hacking Courses Penetration Testing Courses Identity Management Courses Remote Code Execution Courses

Course Description

Overview

Explore a critical security presentation that delves into infiltrating Identity and Access Management (IAM) solutions through a zero-click exploit. Learn about the foundational use-cases for IAM solutions and examine past in-the-wild attacks, understanding their impact. Follow the presenter's audit approach, including challenges faced and overcome. Discover how multiple vulnerabilities were chained to achieve unauthenticated remote code execution as root on a popular IAM solution used by Fortune 500 companies and government organizations. Gain valuable insights into cybersecurity threats and vulnerabilities in identity provider systems.

Syllabus

I Am Whoever I Say I Am: Infiltrating Identity Providers Using a 0Click Exploit


Taught by

Black Hat

Related Courses

Attack on Titan M, Reloaded - Vulnerability Research on a Modern Security Chip
Black Hat via YouTube Attacks From a New Front Door in 4G & 5G Mobile Networks
Black Hat via YouTube AAD Joined Machines - The New Lateral Movement
Black Hat via YouTube Better Privacy Through Offense - How to Build a Privacy Red Team
Black Hat via YouTube Whip the Whisperer - Simulating Side Channel Leakage
Black Hat via YouTube