Overview
Explore advanced AWS security strategies in this 20-minute conference talk from BSidesSF 2020. Dive into cloud infrastructure defense, leveraging the ATT&CK framework to build and operationalize robust detection and alerting systems for AWS environments. Learn about initial axis, discovery techniques, CloudTrail intricacies, persistence detection, and defense evasion. Gain valuable insights on improving cloud security posture, understanding potential threats, and implementing effective countermeasures. Equip yourself with the knowledge to better protect AWS infrastructures and stay ahead of evolving cloud-based attacks.
Syllabus
Introduction
Initial Axis
Discovery
Creation
CloudTrail
CloudTrail Scheme
CloudTrail Detection
Persistence Detection
Discovery Detection
Defense Evasion
Operationalisation
References
Taught by
Security BSides San Francisco