DevOps Conference
The Conference for Continuous Delivery, Microservices,
Containers, Clouds and Lean Business

AWS IAM Permission Escalation & Tips and Tricks

Session
Until February 17:
✓ Save up to £333
✓ Arduino Starter Kit or Amazon Echo Dot for free
✓ Group discount
Register now
Until February 17:
✓ Save up to £333
✓ Arduino Starter Kit or Amazon Echo Dot for free
✓ Group discount
Register now
Until March 3:
✓ Save up to 892€
✓ Transformation day for free
✓ Raspberry Pi or Arduino for free
Register now
Bis zum 3 März:
✓ Sparen Sie bis zu 892 €
✓ Transformation Day gratis
✓ Raspberry Pi oder Arduino gratis
Jetzt anmelden
Thank you for joining!
Register now
Thank you for joining!
Register now
Thank you for attending
Thank you for attending
Thank you for attending!
Danke für Ihre Teilnahme!
Infos

Demo of SSRF methodology of a website attack to takeover temporary AWS credentials. We will cover two demo’s showing how we can hijack access to EC2 using reserve shell with userdata script. Moreover we will follow approach to inject malicious code to Lambda function without having permissions to update code. End of session will be dedicated to show some examples of JSON policies solving most popular challenges regarding permissions in AWS.

This Session Diese Session Take me to the current program of . Hier geht es zum aktuellen Programm von London London , Berlin Berlin , New York New York , Singapore Singapur or oder Munich München .

Stay tuned:

Behind the Tracks

 

Kubernetes Ecosystem

Docker, Kubernetes & Co

Microservices & Software Architecture

Maximize development productivity

Continuous Delivery & Automation

Build, test and deploy agile

Cloud Platforms & Serverless

Cloud-based & native apps

Monitoring, Traceability & Diagnostics

Handle the complexity of microservices applications

Security

DevSecOps for safer applications

Business & Company Culture

Radically optimize IT

Organizational Change

Overcome obstacles on the road to DevOps

Live Demo #slideless

Showing how technology really works