Overview
Explore the potential security vulnerabilities in Terraform, a widely-used infrastructure-as-code tool, in this 38-minute conference talk by Mike McCabe at HackMiami. Discover how malicious actors can exploit Terraform to escalate privileges, extract sensitive information, and gain unauthorized access to cloud environments. Witness live demonstrations of real-world attack scenarios and learn practical recommendations for securing Terraform implementations. Gain insights from Michael McCabe, president of Cloud Security Partners, who brings extensive experience in helping large financial institutions securely migrate to the cloud and has been a featured speaker at prominent security conferences such as LASCON, Defcon, DevSecOps Days, and BSides.
Syllabus
Infrastructure As Remote Code Execution: How To Abuse Terraform To Elevate Acces. Mike McCabe
Taught by
HackMiami