Explore offensive security techniques using microservices and Function as a Service (FaaS) in this Breaking Ground conference talk from BSidesLV 2017. Dive into server lists, stack functions, and AWS Lambda, learning about Airbnb's Stream Alert and Lambda automation. Discover the AWS Web Application Firewall and create a simple "Hello World" example. Investigate Google Cloud Platform and IBM OpenWhisk, and experiment with Docker containers. Analyze costs and delve into Project Thunderstruck, including RFC 8020, seeding strategies, and execution plans. Examine script execution, troubleshoot issues, and consider potential improvements such as web interfaces and network device integration. Gain insights into dynamic databases and access additional resources for further learning in this comprehensive exploration of microservices and FaaS for offensive security purposes.
Overview
Syllabus
Introduction
About me
Server Lists
Stack Functions
Lambda
Airbnb Stream Alert
Lambda Automating
AWS Web Application Firewall
Simple Hello World
Google Cloud Platform
IBM OpenWhisk
Play with Docker
Cost
Summary
Project Thunderstruck
RFC 8020
Seeding
My Plan
Running The Script
What Went Wrong
Improvements
Web Interface
Network Device
Conclusion
Dynamic DB
Previous talks
Additional resources
Taught by
BSidesLV
