automated analysis of aws infrastructures
play

Automated analysis of AWS infrastructures Supervisor: Cedric van - PowerPoint PPT Presentation

Feb 25, 2024 •447 likes •755 views

Peter Bennink 3rd of July, 2018 MSc System & Network Engineering Automated analysis of AWS infrastructures Supervisor: Cedric van Bockhaven - Peter Bennink 3rd of July, 2018 Background ... a secure cloud services platform, offering

  1. Peter Bennink 3rd of July, 2018 MSc System & Network Engineering Automated analysis of AWS infrastructures Supervisor: Cedric van Bockhaven -

  2. Peter Bennink 3rd of July, 2018 Background “... a secure cloud services platform, offering compute power, database storage, content delivery and other functionality …” 2

  3. Peter Bennink 3rd of July, 2018 Background EC2 (Elastic Compute Cloud) RDS (Relational Database Service) S3 (Simple Storage Service) 3

  4. Peter Bennink 3rd of July, 2018 Background VPC Security groups IAM 4

  5. Peter Bennink 3rd of July, 2018 Background VPC Security groups IAM 5

  6. Peter Bennink 3rd of July, 2018 Background IAM - Access keys - Policies - Users - Groups - Roles 6

  7. Peter Bennink 3rd of July, 2018 Background IAM > Policies - Effect (Allow/Deny) - Action - Resource 7

  8. Peter Bennink 3rd of July, 2018 Introduction - You’ve infiltrated an AWS infrastructure, now what? - Expanding access - Knowledge of inaccessible components - Visualization 8

  9. Peter Bennink 3rd of July, 2018 Background Bloodhound Active Directory 9

  10. Peter Bennink 3rd of July, 2018 Research question Given an infiltrated AWS component, what part of the related infrastructure would an automated tool be able to index? 10

  11. Peter Bennink 3rd of July, 2018 Methodology 1. Analysis 2. Development 3. Testing 11

  12. Peter Bennink 3rd of July, 2018 Methodology 1. Analysis 2. Development 3. Testing 12

  13. Peter Bennink 3rd of July, 2018 Analysis IAM - Resource-level permissions - *:Describe* - *:List* 13

  14. Peter Bennink 3rd of July, 2018 Background IAM > Policies - Effect (Allow/Deny) - Action - Resource 14

  15. Peter Bennink 3rd of July, 2018 Analysis IAM - Resource-level permissions - *:Describe* - *:List* 15

  16. Peter Bennink 3rd of July, 2018 Analysis Metadata server - EC2 - 169.254.169.254 16

  17. Peter Bennink 3rd of July, 2018 Functionality Metadata crawler Captures everything on the metadata server… … including security credentials 17

  18. Peter Bennink 3rd of July, 2018 Functionality Permission bruteforcer Infrastructure analyser Checks what commands Uses access of key(s) to create access keys can use mapping of infrastructure 18

  19. Peter Bennink 3rd of July, 2018 19

  20. Peter Bennink 3rd of July, 2018 Development - Neo4j - boto3 - py2neo 20

  21. Peter Bennink 3rd of July, 2018 Conclusion - Very useful for expanding - Diversity of keys more access & escalating privilege important than privilege in - Resource-level permissions terms of enumeration https://gitlab.com/PeterBennink/aws-infrastructure-analysis 21

  22. Peter Bennink 3rd of July, 2018 Discussion/Future work Expandable in an infinite number of ways 22

  23. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work Expandable in an infinite number of ways 23

  24. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS Expandable in an infinite number of ways 24

  25. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS - More AWS services/commands Expandable in an infinite number of ways 25

  26. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS - More AWS services/commands - Automated infiltration Expandable in an infinite number of ways 26

  27. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS - More AWS services/commands - Automated infiltration Expandable in an infinite number of ways - Nmapping subnets 27

  28. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS - More AWS services/commands - Automated infiltration Expandable in an infinite number of ways - Nmapping subnets - Resource-level permission bruteforcer 28

  29. Peter Bennink 3rd of July, 2018 Thank you. Any questions? https://gitlab.com/PeterBennink/aws-infrastructure-analysis 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

PAFFI: Performance Analysis Framework for Fog Infrastructures in realistic scenarios Claudia

PAFFI: Performance Analysis Framework for Fog Infrastructures in realistic scenarios Claudia

PAFFI: Performance Analysis Framework for Fog Infrastructures in realistic scenarios Claudia Canali, Riccardo Lancellotti Department of Engineering Enzo Ferrari University of Modena and Reggio Emilia ICCCS - Oct. 10-12, 2019, Rome 1 Fog

335 views • 16 slides
Analysis and Evaluation of Hydrogen Infrastructures for Private and Commercial Vehicles

Analysis and Evaluation of Hydrogen Infrastructures for Private and Commercial Vehicles

Analysis and Evaluation of Hydrogen Infrastructures for Private and Commercial Vehicles 15.02.2019 | SIMONAS CERNIAUSKAS, THOMAS GRUBE, MARTIN ROBINIUS, DETLEF STOLTEN IEWT 2019: 11. INTERNATIONAL ENERGY INDUSTRY CONFERENCE, FREEDOM,

341 views • 21 slides
Automated capability analysis in Wordpress plugins Using static and dynamic analysis SNE RP2

Automated capability analysis in Wordpress plugins Using static and dynamic analysis SNE RP2

Automated capability analysis in Wordpress plugins Using static and dynamic analysis SNE RP2 Frank Uijtewaal Collab: DongIT (dongit.nl) Initial project goal Find a new and interesting type of security analysis for web applications

480 views • 35 slides
HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB

HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB

Distributed Applications, Web Services, Tools and GRID Infrastructures for Bioinformatics HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB 2006 - Santa Margherita di Pula (CA) - July 10-13, 2006

820 views • 40 slides
my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA

my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA

my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA COLLECTION AND ANALYTICS There is a high demand for reliable Traffic Data but Static data single-purpose data Invasive costly deployment &

404 views • 18 slides
A Survey On Automated Dynamic Malware Analysis Evasion and Counter-Evasion: PC, Mobile, and Web

A Survey On Automated Dynamic Malware Analysis Evasion and Counter-Evasion: PC, Mobile, and Web

A Survey On Automated Dynamic Malware Analysis Evasion and Counter-Evasion: PC, Mobile, and Web Alexei Bulazel & Blent Yener River Loop Security Rensselaer Polytechnic Institute (RPI) Introduction Automated dynamic malware analysis is

684 views • 33 slides
Automatic Deployment of Peer-to-Peer Network Infrastructures PhD Scientific Report R azvan

Automatic Deployment of Peer-to-Peer Network Infrastructures PhD Scientific Report R azvan

Context Virtualized Infrastructure Automated Framework Data Acquisition Setup and Results Conclusion Questions Automatic Deployment of Peer-to-Peer Network Infrastructures PhD Scientific Report R azvan Deaconescu Supervisor: prof. dr.

767 views • 35 slides
Impeding Automated Malware Analysis with Environment-sensitive Malware Chengyu Song , Paul Royal

Impeding Automated Malware Analysis with Environment-sensitive Malware Chengyu Song , Paul Royal

Impeding Automated Malware Analysis with Environment-sensitive Malware Chengyu Song , Paul Royal and Wenke Lee College of Computing Georgia Institute of Technology Agenda l Background l Defeating Automated Malware Analysis Host

1.28k views • 28 slides
GR-INSPECTOR A SIGNAL ANALYSIS TOOLBOX FOR GNU RADIO MOTIVATION OF AUTOMATED SIGNAL ANALYSIS

GR-INSPECTOR A SIGNAL ANALYSIS TOOLBOX FOR GNU RADIO MOTIVATION OF AUTOMATED SIGNAL ANALYSIS

GR-INSPECTOR A SIGNAL ANALYSIS TOOLBOX FOR GNU RADIO MOTIVATION OF AUTOMATED SIGNAL ANALYSIS Spectrum Monitoring Explore real-world signals Easy access for beginners Live demodulation Batch processing of signals TASKS OF RECEIVING UNKNOWN

626 views • 16 slides
CELLENGER CELLENGER Automated High Automated High Content Content Analysis of Analysis of

CELLENGER CELLENGER Automated High Automated High Content Content Analysis of Analysis of

CELLENGER CELLENGER Automated High Automated High Content Content Analysis of Analysis of Biomedical Biomedical Imagery Imagery Dr. Maria Athelogou the cognitive computing company the cognitive computing company Founded in 1994 as

308 views • 19 slides
Towards Safety Analysis of Interactions Between Human Users and Automated Driving Systems

Towards Safety Analysis of Interactions Between Human Users and Automated Driving Systems

10th European Congress on Embedded Real-Time Systems - ERTS 2020 Towards Safety Analysis of Interactions Between Human Users and Automated Driving Systems Fredrik Warg Stig Ursing Martin Kaalhus Richard Wiik Safety of Automated Driving

762 views • 19 slides
Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs

Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs

Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs Value Chain for GI production Is there a Future for World Wide Web and its Impact Spatial Data Infrastructures? The Geospatial Web

214 views • 5 slides
Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight

Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight

Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight Whats this class about? Pieces of the puzzle All the usual stuff (syllabus, grading, ) Information Wisdom Knowledge

368 views • 36 slides
Trace Level Automated Mercury Speciation Analysis Vivien Taylor, 1 Brian Jackson, 1 Annie

Trace Level Automated Mercury Speciation Analysis Vivien Taylor, 1 Brian Jackson, 1 Annie

Trace Level Automated Mercury Speciation Analysis Vivien Taylor, 1 Brian Jackson, 1 Annie Carter, 2 Colin Davies 2 1. Trace Element Core, Dartmouth College 2. Brooks Rand Labs Background Trace Level Automated Mercury Analysis EPA 1630

549 views • 25 slides
Automated High-dimensional Cytometric Data Analysis Cytometric Data Analysis Philip L. De Jager,

Automated High-dimensional Cytometric Data Analysis Cytometric Data Analysis Philip L. De Jager,

Automated High-dimensional Cytometric Data Analysis Cytometric Data Analysis Philip L. De Jager, M.D. Ph.D. Director, Program in Translational NeuroPsychiatric Genomics Brigham & Womens Hospital Assistant Professor of Neurology Harvard

477 views • 46 slides
AUTOMATED ANALYSIS OF URINE SEDIMENT GIOVANNI BATTISTA FOGAZZI CLINICAL AND RESEARCH LABORATORY

AUTOMATED ANALYSIS OF URINE SEDIMENT GIOVANNI BATTISTA FOGAZZI CLINICAL AND RESEARCH LABORATORY

AUTOMATED ANALYSIS OF URINE SEDIMENT GIOVANNI BATTISTA FOGAZZI CLINICAL AND RESEARCH LABORATORY ON URINARY SEDIMENT U.O. DI NEFROLOGIA E DIALISI FONDAZIONE IRCCS CA GRANDA OSPEDALE MAGGIORE POLICLINICO MILANO- ITALY 1985: THE FIRST AUTOMATED

918 views • 34 slides
An empirical study in requirements engineering in cross domain development Sara Nilsson, Lena

An empirical study in requirements engineering in cross domain development Sara Nilsson, Lena

An empirical study in requirements engineering in cross domain development Sara Nilsson, Lena Buffoni, Kristian Sandahl, Hanna Johansson, Bilal Tahir Sheikh Accepted for presentation at DESIGN 2018 SIGNAL'18/Kristian Sandahl 2018-05-07 2

458 views • 24 slides
Community of data science enthusiasts gathering together to share knowledge and experiences .

Community of data science enthusiasts gathering together to share knowledge and experiences .

Community of data science enthusiasts gathering together to share knowledge and experiences . Where are we? BRAGA COIMBRA AVEIRO PORTO LISBOA O The team BRAGA 2019 Quick Review Meetups Other events: - Kaggle Days - DSPT Day 2019 (Two

589 views • 18 slides
Federal Energy Regulatory Commission July 18, 2019 Open Commission Meeting Staff Presentation

Federal Energy Regulatory Commission July 18, 2019 Open Commission Meeting Staff Presentation

Federal Energy Regulatory Commission July 18, 2019 Open Commission Meeting Staff Presentation Items E-1 & E-2 Good morning Mr. Chairman and Commissioners, E-1 is a draft final rule in the Data Collection for Analytics and Surveillance and

59 views • 3 slides
BIG DATA IN HIGH ENERGY PHYSICS Igor Mandrichenko Big Data meeting 4/3/2015 What is Big Data ?

BIG DATA IN HIGH ENERGY PHYSICS Igor Mandrichenko Big Data meeting 4/3/2015 What is Big Data ?

BIG DATA IN HIGH ENERGY PHYSICS Igor Mandrichenko Big Data meeting 4/3/2015 What is Big Data ? For different industries and areas of science it means different things Clicks, ad exposures, movies preferences, hyper text links, genome

326 views • 16 slides
Noria: Partially Stateful Data-flow for Read Heavy Web Applications Jon Gjengset Malte

Noria: Partially Stateful Data-flow for Read Heavy Web Applications Jon Gjengset Malte

Noria: Partially Stateful Data-flow for Read Heavy Web Applications Jon Gjengset Malte Schwarzkopf Jonathan Behrens Lara Timbo Ara Martin Ek Eddie Kohler M. Frans Kaashoek Robert Morris Challenges of Read Heavy Web Apps - Repeat reads

486 views • 12 slides
Data structure Mapping data What data you need to entry Exact location (case specific)

Data structure Mapping data What data you need to entry Exact location (case specific)

Attributes and features Data structure Mapping data What data you need to entry Exact location (case specific) Aggregated data by administrative levels (aggregated) Aggregated data are usually represented by polygons A field for the

673 views • 44 slides
Council Deliberations November 25, 2019 2020 Proposed Business Plan and Budget 2020 Budget

Council Deliberations November 25, 2019 2020 Proposed Business Plan and Budget 2020 Budget

2020 Proposed Business Plan and Budget Council Deliberations November 25, 2019 2020 Proposed Business Plan and Budget 2020 Budget Objectives 1. Maintain base programs and services aligned with inflation Incorporate Establish link 2. Provide

660 views • 20 slides
Overview of the sufficiency of measures analysis Co-funded by the European Union 18 June 2019

Overview of the sufficiency of measures analysis Co-funded by the European Union 18 June 2019

Overview of the sufficiency of measures analysis Co-funded by the European Union 18 June 2019 Business as Business as usual usual (BAU) U) state state GES GES Environmental status gap Example business Possible BAU states as

520 views • 13 slides

More recommend