I Want You to Hack AWS: Cloud Penetration Testing for Traditional Hackers | Nick Frichette скачать в хорошем качестве

I Want You to Hack AWS: Cloud Penetration Testing for Traditional Hackers | Nick Frichette

🔗 Join us in-person and virtually at our Wild West Hackin' Fest: information security conferences — https://wildwesthackinfest.com/ 🔗 Register for Infosec Webcasts, Anti-casts & Summits. – https://poweredbybhis.com I Want You to Hack AWS: Cloud Penetration Testing for Traditional Hackers | Nick Frichette As the world's largest cloud platform, Amazon Web Services (AWS) powers millions of applications and deployments, making it a common target for offensive security professionals. The complexity of AWS introduces a number of new attack surfaces, but actually exploiting them often requires niche knowledge or familiarity with arcane configurations. Navigating these nuances to identify and exploit vulnerabilities can be challenging, even for seasoned penetration testers. In this talk, I'll share some of the things I wish I had known when I started pentesting AWS environments. We'll examine the AWS shared responsibility model and the pentester's role in it. We'll then cover the fundamentals of AWS Identity and Access Management (IAM), take a look at important classes of misconfigurations, and discuss important tradecraft for avoiding detection. Whether you're new to AWS penetration testing or an experienced cloud hacker seeking to deepen your expertise, this session will provide insights and practical skills applicable to real-world engagements. //Black Hills Infosec Socials Twitter:   / bhinfosecurity   Mastodon: https://infosec.exchange/@blackhillsi... LinkedIn:   / antisyphon-training   Discord:   / discord   ///Black Hills Infosec Shirts & Hoodies https://spearphish-general-store.mysh... ///Black Hills Infosec Services Active SOC: https://www.blackhillsinfosec.com/ser... Penetration Testing: https://www.blackhillsinfosec.com/ser... Incident Response: https://www.blackhillsinfosec.com/ser... ///Backdoors & Breaches - Incident Response Card Game Backdoors & Breaches: https://www.backdoorsandbreaches.com/ Play B&B Online: https://play.backdoorsandbreaches.com/ ///Antisyphon Training Pay What You Can: https://www.antisyphontraining.com/pa... Live Training: https://www.antisyphontraining.com/co... On Demand Training: https://www.antisyphontraining.com/on... Antisyphon Discord:   / discord   Antisyphon Mastodon: https://infosec.exchange/@Antisy_Trai... ///Educational Infosec Content Black Hills Infosec Blogs: https://www.blackhillsinfosec.com/blog/ Wild West Hackin' Fest YouTube:    / wildwesthackinfest   Antisyphon Training YouTube:    / antisyphontraining   Active Countermeasures YouTube:    / activecountermeasures   Threat Hunter Community Discord:   / discord   Join us at the annual information security conference in Deadwood, SD (in-person and virtually) — Wild West Hackin' Fest: https://wildwesthackinfest.com/