Explore cloud-based incident response techniques and AWS environment hardening in this 46-minute Black Hat conference talk by Andrew Krug and Alex McCormack. Learn how to programmatically collect evidence and quarantine instances during cloud-based incident response, while understanding the risks associated with compromised API keys. Discover tools for automating forensic evidence collection from compromised hosts and gain insights into proper AWS environment configuration. Understand the differences between cloud and traditional on-premise incident response procedures, and acquire knowledge on mitigating risks through effective monitoring and configuration practices.
Hardening AWS Environments and Automating Incident Response for AWS Compromises
Overview
Syllabus
Hardening AWS Environments and Automating Incident Response for AWS Compromises
Taught by
Black Hat
Related Courses
-
Hardening AWS Environments and Automating Incident Response for AWS Compromises
-
Incident Response Lifecycle
-
Incident Response and Digital Forensics
-
Incident Response and Business Continuity Architecture Planning, Design and Implementation
-
Incident Response and Risk Management
-
AWS Security Incident Response - Ransomware Use Case
