Hacking AWS end-to-end (room 2)

Daniel Grzelak

Head of Security @ Atlassian

Hacking AWS end-to-end (room 2)

09:30 AM 9 September, 2017

All the things are and/or will be on AWS now, but the public state of the art AWS hacking techniques are some combination of 1. Search Github for access keys, 2. Start up EC2 instances and mine Bitcoin. That’s not at all realistic.

The talk will be presented as a guide on how to hack an AWS account start to finish:

  • External reconnaissance and target selection
  • Initial compromise and trust abuse
  • Log disruption
  • Persistence
  • Exploration and exfiltration
  • Privilege escalation and lateral movement
  • Other things