Cloud Security Alliance Romanian Chapter

Elevating Access: A Methodical Approach to Privilege Escalation in AWS

300 300 people viewed this event.

Event description: The presentation highlights how attackers can elevate privileges in AWS accounts by exploiting insecure configurations from services like IAM, EC2, Lambda Functions, EKS and more. We’ll show how, indeed, a mistake is all it takes for attackers to gain AdministratorAccess permissions without any initial access. Besides the offensive techniques, the presentation puts a focus on how to defend and mitigate the impact of a breach against privilege escalation in a cloud environment.

About the Speaker: Eduard Agavriloae is a Cloud Security Expert working as a Senior Penetration Tester at KPMG Romania. In the last two years Eduard presented at multiple local and international security conferences and did novel research in the cloud security area, with a focus on offensive techniques. His focus on research and knowledge sharing got him accepted this year at DEF CON 32 with a research about scanning public AMIs for secrets.

Event registration closed.
 

Date And Time

2024-06-18 @ 05:00 PM to
2024-06-18 @ 06:00 PM
 

Registration End Date

2024-06-18
 

Location

Online event
 
Download Events iCal

Share With Friends