This episode covers an attack scenario very similar to the one that led to the breach of US Bank Capital One.  @0xd4y  goes over the attack scenario using CloudGoat by Rhino Security Labs, and I detect his activities using AWS CloudTrail Lake.

_____________

🧬 VIDEO RESOURCES

🔹 Segev's YouTube Channel:  @0xd4y 

🔹 Segev's walkthrough

🔹 Former AWS engineer convicted over hack that cost Capital One $270m

🔹 CloudGoat

🔹 Instance Metadata

🔹 Sneaky Endpoints

🔹 AWSealion

🔹 GuardDuty Findings

🔹 CloudTrail Lake

_____________

⏰ TIMESTAMPS

00:00 Intro

00:34 Attack Scenario

00:51 Key Terminology

01:41 Cloud Attack Walkthrough - CloudGoat

10:06 Attack Detection Walkthrough - CloudTrail Lake

13:44 Remediation & Final Thoughts

_____________

⚡️⁠JOIN 6,000+ CWX MEMBERS ON DISCORD⁠

📰 ⁠SUBSCRIBE TO THE CYBERWOX UNPLUGGED NEWSLETTER⁠

🥶 ⁠CYBERWOX MERCH⁠

_____________

🧬 CYBERWOX RESOURCES

🔹 ⁠Cyberwox Cybersecurity Notion Templates for planning your career⁠

🔹 ⁠Cyberwox Best Entry-Level Cybersecurity Resume Template⁠

🔹 ⁠Learn AWS Threat Detection with my LinkedIn Learning Course⁠

_____________

📱 LET'S CONNECT

→ ⁠⁠IG⁠⁠

→ ⁠⁠Threads⁠⁠

→ ⁠⁠Substack⁠⁠

→ ⁠⁠Twitter⁠⁠

→ ⁠⁠Linkedin⁠⁠

→ ⁠⁠Tiktok⁠⁠

Email: [email protected]

_____________

⚠️DISCLAIMER

This description has some affiliate links, and I may receive a small commission for purchases made through these links. I appreciate your support!

Email: [email protected]