automated analysis of aws infrastructures
play

Automated analysis of AWS infrastructures Supervisor: Cedric van - PowerPoint PPT Presentation

Feb 25, 2024 •447 likes •755 views

Peter Bennink 3rd of July, 2018 MSc System & Network Engineering Automated analysis of AWS infrastructures Supervisor: Cedric van Bockhaven - Peter Bennink 3rd of July, 2018 Background ... a secure cloud services platform, offering

  1. Peter Bennink 3rd of July, 2018 MSc System & Network Engineering Automated analysis of AWS infrastructures Supervisor: Cedric van Bockhaven -

  2. Peter Bennink 3rd of July, 2018 Background “... a secure cloud services platform, offering compute power, database storage, content delivery and other functionality …” 2

  3. Peter Bennink 3rd of July, 2018 Background EC2 (Elastic Compute Cloud) RDS (Relational Database Service) S3 (Simple Storage Service) 3

  4. Peter Bennink 3rd of July, 2018 Background VPC Security groups IAM 4

  5. Peter Bennink 3rd of July, 2018 Background VPC Security groups IAM 5

  6. Peter Bennink 3rd of July, 2018 Background IAM - Access keys - Policies - Users - Groups - Roles 6

  7. Peter Bennink 3rd of July, 2018 Background IAM > Policies - Effect (Allow/Deny) - Action - Resource 7

  8. Peter Bennink 3rd of July, 2018 Introduction - You’ve infiltrated an AWS infrastructure, now what? - Expanding access - Knowledge of inaccessible components - Visualization 8

  9. Peter Bennink 3rd of July, 2018 Background Bloodhound Active Directory 9

  10. Peter Bennink 3rd of July, 2018 Research question Given an infiltrated AWS component, what part of the related infrastructure would an automated tool be able to index? 10

  11. Peter Bennink 3rd of July, 2018 Methodology 1. Analysis 2. Development 3. Testing 11

  12. Peter Bennink 3rd of July, 2018 Methodology 1. Analysis 2. Development 3. Testing 12

  13. Peter Bennink 3rd of July, 2018 Analysis IAM - Resource-level permissions - *:Describe* - *:List* 13

  14. Peter Bennink 3rd of July, 2018 Background IAM > Policies - Effect (Allow/Deny) - Action - Resource 14

  15. Peter Bennink 3rd of July, 2018 Analysis IAM - Resource-level permissions - *:Describe* - *:List* 15

  16. Peter Bennink 3rd of July, 2018 Analysis Metadata server - EC2 - 169.254.169.254 16

  17. Peter Bennink 3rd of July, 2018 Functionality Metadata crawler Captures everything on the metadata server… … including security credentials 17

  18. Peter Bennink 3rd of July, 2018 Functionality Permission bruteforcer Infrastructure analyser Checks what commands Uses access of key(s) to create access keys can use mapping of infrastructure 18

  19. Peter Bennink 3rd of July, 2018 19

  20. Peter Bennink 3rd of July, 2018 Development - Neo4j - boto3 - py2neo 20

  21. Peter Bennink 3rd of July, 2018 Conclusion - Very useful for expanding - Diversity of keys more access & escalating privilege important than privilege in - Resource-level permissions terms of enumeration https://gitlab.com/PeterBennink/aws-infrastructure-analysis 21

  22. Peter Bennink 3rd of July, 2018 Discussion/Future work Expandable in an infinite number of ways 22

  23. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work Expandable in an infinite number of ways 23

  24. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS Expandable in an infinite number of ways 24

  25. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS - More AWS services/commands Expandable in an infinite number of ways 25

  26. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS - More AWS services/commands - Automated infiltration Expandable in an infinite number of ways 26

  27. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS - More AWS services/commands - Automated infiltration Expandable in an infinite number of ways - Nmapping subnets 27

  28. Peter Bennink 3rd of July, 2018 - Linkurious (visualization) Discussion/Future work - STS - More AWS services/commands - Automated infiltration Expandable in an infinite number of ways - Nmapping subnets - Resource-level permission bruteforcer 28

  29. Peter Bennink 3rd of July, 2018 Thank you. Any questions? https://gitlab.com/PeterBennink/aws-infrastructure-analysis 29

Recommend

PAFFI: Performance Analysis Framework for Fog Infrastructures in realistic scenarios Claudia

PAFFI: Performance Analysis Framework for Fog Infrastructures in realistic scenarios Claudia

PAFFI: Performance Analysis Framework for Fog Infrastructures in realistic scenarios Claudia Canali, Riccardo Lancellotti Department of Engineering Enzo Ferrari University of Modena and Reggio Emilia ICCCS - Oct. 10-12, 2019, Rome 1 Fog

335 views • 16 slides
Analysis and Evaluation of Hydrogen Infrastructures for Private and Commercial Vehicles

Analysis and Evaluation of Hydrogen Infrastructures for Private and Commercial Vehicles

Analysis and Evaluation of Hydrogen Infrastructures for Private and Commercial Vehicles 15.02.2019 | SIMONAS CERNIAUSKAS, THOMAS GRUBE, MARTIN ROBINIUS, DETLEF STOLTEN IEWT 2019: 11. INTERNATIONAL ENERGY INDUSTRY CONFERENCE, FREEDOM,

341 views • 21 slides
Automated capability analysis in Wordpress plugins Using static and dynamic analysis SNE RP2

Automated capability analysis in Wordpress plugins Using static and dynamic analysis SNE RP2

Automated capability analysis in Wordpress plugins Using static and dynamic analysis SNE RP2 Frank Uijtewaal Collab: DongIT (dongit.nl) Initial project goal Find a new and interesting type of security analysis for web applications

480 views • 35 slides
HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB

HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB

Distributed Applications, Web Services, Tools and GRID Infrastructures for Bioinformatics HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB 2006 - Santa Margherita di Pula (CA) - July 10-13, 2006

820 views • 40 slides
my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA

my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA

my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA COLLECTION AND ANALYTICS There is a high demand for reliable Traffic Data but Static data single-purpose data Invasive costly deployment &

404 views • 18 slides
A Survey On Automated Dynamic Malware Analysis Evasion and Counter-Evasion: PC, Mobile, and Web

A Survey On Automated Dynamic Malware Analysis Evasion and Counter-Evasion: PC, Mobile, and Web

A Survey On Automated Dynamic Malware Analysis Evasion and Counter-Evasion: PC, Mobile, and Web Alexei Bulazel & Blent Yener River Loop Security Rensselaer Polytechnic Institute (RPI) Introduction Automated dynamic malware analysis is

684 views • 33 slides
Automatic Deployment of Peer-to-Peer Network Infrastructures PhD Scientific Report R azvan

Automatic Deployment of Peer-to-Peer Network Infrastructures PhD Scientific Report R azvan

Context Virtualized Infrastructure Automated Framework Data Acquisition Setup and Results Conclusion Questions Automatic Deployment of Peer-to-Peer Network Infrastructures PhD Scientific Report R azvan Deaconescu Supervisor: prof. dr.

767 views • 35 slides
Impeding Automated Malware Analysis with Environment-sensitive Malware Chengyu Song , Paul Royal

Impeding Automated Malware Analysis with Environment-sensitive Malware Chengyu Song , Paul Royal

Impeding Automated Malware Analysis with Environment-sensitive Malware Chengyu Song , Paul Royal and Wenke Lee College of Computing Georgia Institute of Technology Agenda l Background l Defeating Automated Malware Analysis Host

1.28k views • 28 slides
GR-INSPECTOR A SIGNAL ANALYSIS TOOLBOX FOR GNU RADIO MOTIVATION OF AUTOMATED SIGNAL ANALYSIS

GR-INSPECTOR A SIGNAL ANALYSIS TOOLBOX FOR GNU RADIO MOTIVATION OF AUTOMATED SIGNAL ANALYSIS

GR-INSPECTOR A SIGNAL ANALYSIS TOOLBOX FOR GNU RADIO MOTIVATION OF AUTOMATED SIGNAL ANALYSIS Spectrum Monitoring Explore real-world signals Easy access for beginners Live demodulation Batch processing of signals TASKS OF RECEIVING UNKNOWN

626 views • 16 slides
CELLENGER CELLENGER Automated High Automated High Content Content Analysis of Analysis of

CELLENGER CELLENGER Automated High Automated High Content Content Analysis of Analysis of

CELLENGER CELLENGER Automated High Automated High Content Content Analysis of Analysis of Biomedical Biomedical Imagery Imagery Dr. Maria Athelogou the cognitive computing company the cognitive computing company Founded in 1994 as

308 views • 19 slides
Towards Safety Analysis of Interactions Between Human Users and Automated Driving Systems

Towards Safety Analysis of Interactions Between Human Users and Automated Driving Systems

10th European Congress on Embedded Real-Time Systems - ERTS 2020 Towards Safety Analysis of Interactions Between Human Users and Automated Driving Systems Fredrik Warg Stig Ursing Martin Kaalhus Richard Wiik Safety of Automated Driving

763 views • 19 slides
Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs

Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs

Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs Value Chain for GI production Is there a Future for World Wide Web and its Impact Spatial Data Infrastructures? The Geospatial Web

214 views • 5 slides
Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight

Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight

Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight Whats this class about? Pieces of the puzzle All the usual stuff (syllabus, grading, ) Information Wisdom Knowledge

368 views • 36 slides
Trace Level Automated Mercury Speciation Analysis Vivien Taylor, 1 Brian Jackson, 1 Annie

Trace Level Automated Mercury Speciation Analysis Vivien Taylor, 1 Brian Jackson, 1 Annie

Trace Level Automated Mercury Speciation Analysis Vivien Taylor, 1 Brian Jackson, 1 Annie Carter, 2 Colin Davies 2 1. Trace Element Core, Dartmouth College 2. Brooks Rand Labs Background Trace Level Automated Mercury Analysis EPA 1630

549 views • 25 slides
Automated High-dimensional Cytometric Data Analysis Cytometric Data Analysis Philip L. De Jager,

Automated High-dimensional Cytometric Data Analysis Cytometric Data Analysis Philip L. De Jager,

Automated High-dimensional Cytometric Data Analysis Cytometric Data Analysis Philip L. De Jager, M.D. Ph.D. Director, Program in Translational NeuroPsychiatric Genomics Brigham & Womens Hospital Assistant Professor of Neurology Harvard

477 views • 46 slides
AUTOMATED ANALYSIS OF URINE SEDIMENT GIOVANNI BATTISTA FOGAZZI CLINICAL AND RESEARCH LABORATORY

AUTOMATED ANALYSIS OF URINE SEDIMENT GIOVANNI BATTISTA FOGAZZI CLINICAL AND RESEARCH LABORATORY

AUTOMATED ANALYSIS OF URINE SEDIMENT GIOVANNI BATTISTA FOGAZZI CLINICAL AND RESEARCH LABORATORY ON URINARY SEDIMENT U.O. DI NEFROLOGIA E DIALISI FONDAZIONE IRCCS CA GRANDA OSPEDALE MAGGIORE POLICLINICO MILANO- ITALY 1985: THE FIRST AUTOMATED

918 views • 34 slides
Science 2.0 VU Big Science, e-Science and E- Infrastructures + Bibliometric Network Analysis

Science 2.0 VU Big Science, e-Science and E- Infrastructures + Bibliometric Network Analysis

www.tugraz.at n W I S S E N n T E C H N I K n L E I D E N S C H A F T Science 2.0 VU Big Science, e-Science and E- Infrastructures + Bibliometric Network Analysis Elisabeth Lex KTI, TU Graz

910 views • 42 slides
Automated Workload Characterization for I/O Performance Analysis in

Automated Workload Characterization for I/O Performance Analysis in

Automated Workload Characterization for I/O Performance Analysis in Virtualized Environments Axel Busch, Qais Noorshams, Samuel Kounev, February 4 th , 2015 Anne Koziolek, Ralf Reussner, Erich Amrehn ICPE 2015 , Austin,

561 views • 23 slides
Towards Automated Bioimage Analysis: Algorithms & Applications Joo Manuel R. S. Tavares

Towards Automated Bioimage Analysis: Algorithms & Applications Joo Manuel R. S. Tavares

Towards Automated Bioimage Analysis: Algorithms & Applications Joo Manuel R. S. Tavares tavares@fe.up.pt www.fe.up.pt/~tavares March 2, 2016 Outline Introduction Segmentation Analysis of Objects Tracking Matching

883 views • 64 slides
Interoperation with Interoperation with Infrastructures: Infrastructures: NDGF-EGEE NDGF-EGEE

Interoperation with Interoperation with Infrastructures: Infrastructures: NDGF-EGEE NDGF-EGEE

Interoperation with Interoperation with Infrastructures: Infrastructures: NDGF-EGEE NDGF-EGEE Michael Grnager, PhD Technical Coordinator, NDGF International Symposium on Grid Computing 08 Taipei , April 11 th 2008 Outline Outline

616 views • 50 slides
Automated Reasoning: Some Successes and New Challenges Predrag Jani ci c

Automated Reasoning: Some Successes and New Challenges Predrag Jani ci c

What is this talk about? What is automated reasoning? Automated reasoning in propositional logic Automated reasoning in first-order logic Automated reasoning in higher-order logic Automated reasoning in geometry Conclusions Automated

806 views • 52 slides
Automated Aspect Recommendation through Clustering-Based Fan-in Analysis Danfeng Zhang , Yao Guo,

Automated Aspect Recommendation through Clustering-Based Fan-in Analysis Danfeng Zhang , Yao Guo,

Automated Aspect Recommendation through Clustering-Based Fan-in Analysis Danfeng Zhang , Yao Guo, Xiangqun Chen Institute of Software, Peking University Talk Outline Background Motivation Clustering-Based Fan-in Analysis (CBFA)

485 views • 30 slides
Assessing and Improving Operational Resilience of Critical Infrastructures and Other Systems An

Assessing and Improving Operational Resilience of Critical Infrastructures and Other Systems An

Introduction Models Analysis Algorithms Extensions Conclusions References Assessing and Improving Operational Resilience of Critical Infrastructures and Other Systems An INFORMS TutORial Associate Professor David L. Alderson Distinguished

1.37k views • 99 slides
Outline Enabling the automated identification and analysis of meter Assumptions What we

Outline Enabling the automated identification and analysis of meter Assumptions What we

5/20/16 Outline Enabling the automated identification and analysis of meter Assumptions What we study and why and rhyme in Russian verse How we use computation tools to do it Elise Thorsen (enthorsen@gmail.com) David J. Birnbaum

429 views • 5 slides

More recommend