Common Infrastructure Exploits in AWS/GCP/Azure Servers and Containers

Posted on in Presentations

IaaS clouds transformed datacenter security architecture by enabling programmatic detection of flaws, making the cloud more transparently secure than any legacy architecture. But security practitioners who assume congruence to legacy designs miss where attack surface and visibility has changed. With concrete examples, this talk will explore the practical risks posed by misunderstanding VPC DNS and more.

Learning Objectives:
1: Understand exfil. risks in cloud hosting services due to DNS and VPC endpoints.
2: Understand what mitigations are not available when moving from legacy to cloud.
3: Understand mitigations available for server and serverless (container) designs.

Alexi Papaleonardos

Principal Consultant, CrowdStrike

Hackers & Threats

hackers & threats penetration testing security architecture cloud security



Share With Your Community