Hadoop Safari: Hunting for Vulnerabilities

Explore the security vulnerabilities in Hadoop clusters through this 47-minute conference talk from Hack.lu 2016. Gain insights into the growing field of Big Data and learn how the default Hadoop infrastructure lacks proper security measures. Discover various attack vectors to access data lakes, understand Hadoop's (in)security model, and explore the security mechanisms implemented in core Hadoop services. Learn about tools, techniques, and procedures developed to exploit Hadoop vulnerabilities and gain remote system access to cluster members. Understand the challenges of patch management in the Hadoop ecosystem and why known vulnerabilities often remain actionable. Benefit from the expertise of French security enthusiasts Mahdi Braik and Thomas Debize as they share their findings and experiences in hunting for vulnerabilities in Hadoop technologies.