Overview
This course aims to educate learners on the ChaosDB vulnerability discovered in Azure Cosmos DB, a widely used managed database solution. The learning outcomes include understanding the impact of the vulnerability, learning about the specific bugs exploited, and gaining insights into network reconnaissance and server configuration. The course teaches skills such as decoding certificates, listing running applications in a cluster, and executing a full exploit. The teaching method involves a presentation by the Wiz Research Team, including a detailed syllabus covering various aspects of the exploit. This course is intended for individuals interested in cybersecurity, cloud computing, and database management.
Syllabus
Intro
Wiz Research Team
Motivation
Research Mindset
Bug #1 - Jupyter Notebook LPE
Bug #2 - Unrestricted Network Access
Network Recon - IMDS
Network Recon - WireServer
WireServer 101 - Extension Configuration
Wire Server 101 - Certificate Endpoint
Decoding CertificatesBondPackage
Listing Running Applications in Cluster
Recap - The Full Exploit
Disclosure Timeline
Account Service Takeover
Taught by
Black Hat