AWS Security Deep Dive: HiveHacking and Endpoint Protection at Scale

Speakers:
Eduard Agavriloae is an ethical hacker with a focus on AWS Offensive Security research. Eduard writes articles, developed two cloud offensive tools and presented his work at international conferences like DEFCON, Security Fest and 3x DefCamp. More about his previous and current work can be found on his new blog https://hacktodef.com/.
Laszlo Bodor is our AWS Cluj Meetup organizer, Cloud Architect at Tickbird and Authorized AWS Instructor Champion. Laszlo is passionate about AWS and an expert on serverless technologies.
Matei Josephs is a Senior Security Researcher with experience in Penetration Testing, Threat Hunting and Vulnerability Management. Matei broke into the field of cloud security by presenting at DEF CON alongside Eduard. Recently, alongside his wife, Matei started building a family-owned cybersecurity business called HiveHack - https://www.hivehack.tech

Agenda:
18:00 – Introduction. State of the AWS Community in Cluj – Lucian Revnic
18:15 - 18:50 AWS CloudQuarry: Digging for secrets in public AMIs - Eduard Agavriloae, Matei Josephs
This research unveiled numerous secrets that were hidden in public AMIs. From AWS access keys of the root user to live Stripe API keys, Eduard Agavriloae and Matei Josephs collected 500 GB of sensitive data from 27 thousand carefully selected public AMIs. This offered them a look of what was behind the security-by-obscurity curtains and let's just say the stories will make you both laugh and worry.
19:10 - 19:40 Endpoint Protection at scale with AWS WAF: Managing WAF rules across an entire organization - Laszlo Bodor
In this session, we’ll explore how to manage and secure your entire organization’s endpoints (Load balancers, API Gateways, CDN's) across many AWS accounts.
We'll cover two different approaches, one where you want a more centralized approach using AWS Firewall Manager and a slightly decentralized one with AWS Cloud Development Kit (CDK).
Both approaches allow your teams to tailor firewall policies to specific application needs while still integrating with organizational security requirements.

Thank you OpenText Romania and HiveHack for sponsoring our event!