Overview
Explore a comprehensive security analysis of AWS public resources in this DEF CON 32 conference talk that investigates 3.1 million Amazon Machine Images (AMIs) for exposed secrets. Learn about the methodologies and tools used to uncover sensitive data within public AMIs, while understanding the dangerous correlation between exposed AWS access credentials and potential account compromises. Discover essential security practices and preventive measures to protect cloud infrastructure from data exposure and unauthorized access, presented through real-world findings and practical insights from security researchers Eduard Agavriloae and Matei Josephs.
Syllabus
DEF CON 32 - AWS CloudQuarry: Digging for secrets in public AMIs - Eduard Agavriloae, Matei Josephs
Taught by
DEFCONConference