28 Jan '21

(Prevent) Hacking into a CloudService - About security, ECS and terraform AWS UserGroup Hannover Online Meetup Feb, 4th 2021

Written by Yoni Leitersdorf , Gernot Glawe , Malte Walkowiak

Yoni: Oftentimes, when we think about protecting resources in the cloud, we immediately think about the typical ways in - via public-facing applications or abuse of credentials. In this talk, we will look at one additional way: through the work unit parameters of a service. During the development of Indeni’s Cloudrail SaaS product, Yoni was responsible for trying to find ways to hack into the service. One of the ways he found, raises questions about how secure ECS workloads really are."

AWS Usergroup Hannover is happy to host this meeting and we are happy that we have Yoni Leitersdorf with us. Why you should also be happy: Se below!

This meetup has two parts:

Part one - short introduction into terraform 20 mins (Gernot)

Main Talk: (Prevent) Hacking into a CloudService - About security, ECS and terraform (Yoni)

By: - Yoni Leitersdorf Oftentimes, when we think about protecting resources in the cloud, we immediately think about the typical ways in - via public-facing applications or abuse of credentials. In this talk, we will look at one additional way: through the work unit parameters of a service. During the development of Indeni’s Cloudrail SaaS product, Yoni was responsible for trying to find ways to hack into the service. One of the ways he found, raises questions about how secure ECS workloads really are."

Bio Yoni Leitersdorf Yoni is the CEO and Founder of Indeni, a provider of security automation tools. Recently, Indeni launched Cloudrail, its tool for doing security validation of Terraform code. Prior to Indeni, Yoni had a mix of software and cybersecurity roles. He’s been in software since the age of 6, when he first started coding, and got his cybersecurity stripes at the Israel Defense Forces and Check Point Software. One of Yoni’s projects in the military earned him the esteemed Israeli Security Prize. When he’s not coding or running a business, Yoni tries to stay married and raise three young kids.

Malte and Gernot are the organizers.

Our main speaker is Yoni! Die Please join us at meetup.com The button for participating is at the bottom of the meetup page. Teilnahme

Malte&Gernot

(Diese Meetup ist auf Englisch.)

Appendix

Want to know more about Cloudrail and indeni? Try it: Hashicorp

Similar Posts You Might Enjoy

29 Jun '21

Containers! Containers everywhere!

The newly introduced ECS Anywhere feature lets us use our existing resources as Compute Power in Amazon ECS. Let’s talk about some basics and see how ECS Anywhere can be set up in Terraform! - by Antonia Berg

26 Jul '24

Creating an Alarm to Detect Usage of a Pending Deletion KMS Keys and AWS Secrets

In cloud computing, security is a critical concern. While AWS provides backup solutions for many resources, custom configurations often require additional protection. Two key services, AWS Key Management Service (KMS) and AWS Secrets Manager, don’t offer direct backup options. However, they implement a deletion grace period— by default 30 days and this is the maximum — allowing for potential restoration. - by Alexey Vidanov

21 May '24

Build a scalable IDS and IPS solution using Suricata and AWS Gateway Load Balancer

In this blog post, I will demonstrate how to leverage Suricata with the AWS Gateway Load Balancer and Terraform to implement a highly available, scalable, and cost-effective IDS/IPS solution in AWS. This approach will enable you to monitor network traffic, detect threats, and block them before they reach your systems. - by Hendrik Hagen