I’ve been working as
Security and Threat Researcher and Cybersecurity Advocate at senhasegura,
Founder at Black&White Technology, Cybersecurity Advocate, Snyk Ambassador,
Application Security Specialist and Hacking is NOT a crime Advocate. International
Speaker at Security and New technologies events in many countries such as US,
Canada, France, Spain, Germany, Poland, and others, I’ve served as University
Professor in Graduation and MBA courses at Brazilian colleges, in addition, I'm
Creator and Instructor of the Course - Malware Attack Types with Kill Chain
Methodology (PentestMagazine), PowerShell and Windows for Red
Teamers(PentestMagazine) and Malware Analysis - Fundamentals (HackerSec).
Powered by
Filipi Pires
Filipi Pires
Security Researcher and Cybersecurity Advocate at Senhasegura
AWS Attack based on Misconfiguration
The Adversaries leverage
the attack surface complexity to their advantage. They look for the shortest
and easiest attack path to access high value targets quickly, before they are
detected. It is a race of time between the attacker and the defender, during
this talk, we gonna explain how the permission default used in many
integrations can give advantages to the attackers mainly in Cloud, and how the
attacker can use true permission, to escalate privilege in the cloud,
explaining differences between Attack Vector vs Attack Path and what would be
the shortest path used by the attacker that probably focuses to have the
success!
Agenda Talks
IoT & Cybersecurity Con
16:30 to
17:15
01 Nov 2023
AWS Attack based on Misconfiguration
The Adversaries leverage the attack surface complexity to their advantage.
-
Filipi Pires
Security Researcher and Cybersecurity Advocate
at
Senhasegura