Attacking Modern Environments Series: Attack Vectors on Terraform Environments

- 1 min

I have given a talk about my latest research, “Attack Vectors on Terraform Environments”.

About the talk

Have you ever encountered an environment in an engagement that uses Terraform for IAAC (infrastructure-as-code) management? Almost every modern company does now.

In this talk, I will share techniques and attack vectors to exploit and compromise Terraform environments in engagements and patterns that I have seen that achieve successful infrastructure takeover against companies. I will also cover detection and prevention methods for each attack vector discussed in my talk.

This is part of my work-in-progress research in cloud security and attacking modern environments.

Recorded Talk

Watch on Youtube

Download: Slides (PDF)

Download: Slides (PPTX)

Related Posts

Mazin Ahmed

Mazin Ahmed

Thoughts of a hacker

rss facebook twitter github gitlab youtube mail spotify lastfm instagram linkedin google google-plus pinterest medium vimeo stackoverflow reddit quora quora