Edoardo Rosa - You shall not PassRole! [ attack | defense | cloud ]
Initial access is what we are great at (SQLi, RFI, Command Injection, SSRF, etc.) but privilege escalations and lateral movement paths are very different and not so easy to spot especially in full-cloud companies, where the complexity of the environment increases exponentially with the development of new microservices.
The talk is about AWS cloud security and how to abuse initial access to perform privilege escalation and lateral movement attacks to gain administrative permissions on an AWS account.
Security analysts can take advantage of nuvola: an innovative open-source tool (will be released just before the conf) developed in Prima Assicurazioni which aims to provide a navigable high-level overview of an AWS account by collecting the existing configurations and creating a digital twin of the cloud environment.
Slides: github.com/pri...
Demos: github.com/pri...