Slide 59
Slide 59 text
• Reconnaissance and OSINT are the key to discover the security issues in cloud services and
applications
• To prevent the risk associated with a successful SSRF on AWS, administrators can upgrade
EC2 instance metadata endpoints to IMDSv2 which can protect EC2 instances against vanilla
SSRF attempts
• Make sure that EC2 instances are configured properly
• The most common themes are mis-configuration of services, insecure programming and
permissions that should not have been given
• Post exploitation has no limits with the cloud. You can attack additional services, disrupt
logging, make code changes to attack users.
• There are a ton of tools that security folks have written on GitHub and a lot of work is being
done in the attack and exploitation areas
Things to note