icon

DEVOPSCON BERLIN HYBRID CONFERENCE: Learn more about on-site or online attendance here

icon

DEVOPSCON MUNICH HYBRID CONFERENCE: Learn more about on-site or online attendance here

icon

DEVOPSCON LONDON HYBRID CONFERENCE: Learn more about on-site or online attendance here

icon

DEVOPSCON SINGAPORE ONLINE CONFERENCE: Learn more about online attendance here

icon

DEVOPSCON NEW YORK HYBRID CONFERENCE: Learn more about on-site or online attendance here

icon

DEVOPSCON LONDON HYBRID CONFERENCE: Learn more about on-site or online attendance here

DevOps Conference
The Conference for Continuous Delivery, Microservices,
Containers, Clouds and Lean Business

AWS IAM Permission Escalation & Tips and Tricks

Session
#Cloud Platforms & Serverless

Speaker

Michal Adamkiewicz

Michal Adamkiewicz

More Info

Until conference starts
✓ Team discount
✓ Extra specials for freelancers
Register now
Bis Konferenzbeginn
✓ Kollegenrabatt
✓ Extra Specials für Freelancer
Jetzt anmelden
Until July 21:
✓ Save up to $517
✓ Amazon Echo Dot or Arduino for free
✓ Team discount
Register now
Until July 21:
✓ Save up to $517
✓ Amazon Echo Dot or Arduino for free
✓ Team discount
Register now
Until August 11:
✓ Save up to $593
✓ Workshop Day for free
✓ Team discount
Register now
Until August 11:
✓ Save up to $593
✓ Workshop Day for free
✓ Team discount
Register now
Until August 25
✓ Transformation Day for free
✓ Save up to 867€
✓ Amazon Echo Dot or Arduino for free
Register now
Bis 25. August
✓ Transformation Day gratis
✓ Sparen Sie bis zu 867 €
✓ Amazon Echo Dot oder Arduino gratis
Jetzt anmelden
Until conference starts:
✓ Team discount
✓ Specials for freelancers
Register now
Until conference starts:
✓ Team discount
✓ Specials for freelancers
Register now
Infos

Demo of SSRF methodology of a website attack to takeover temporary AWS credentials. We will cover two demo’s showing how we can hijack access to EC2 using reserve shell with userdata script. Moreover we will follow approach to inject malicious code to Lambda function without having permissions to update code. End of session will be dedicated to show some examples of JSON policies solving most popular challenges regarding permissions in AWS.

This Session Diese Session Take me to the current program of . Hier geht es zum aktuellen Programm von Berlin Berlin , New York New York , Singapore Singapur , Munich München or oder London London .

Stay tuned:

Behind the Tracks

 

Kubernetes Ecosystem

Docker, Kubernetes & Co

Microservices & Software Architecture

Maximize development productivity

Continuous Delivery & Automation

Build, test and deploy agile

Cloud Platforms & Serverless

Cloud-based & native apps

Monitoring, Traceability & Diagnostics

Handle the complexity of microservices applications

Security

DevSecOps for safer applications

Business & Company Culture

Radically optimize IT

Organizational Change

Overcome obstacles on the road to DevOps

Live Demo #slideless

Showing how technology really works