This session will demonstrate how an attacker uses off the shelf security tools, API calls, and scripting to discover secrets in a public repository, leading to user impersonation in Okta, privilege escalation and sensitive data discovery in Salesforce, and ultimately data exfiltration from AWS. The session will also show attendees how to detect and defend against these types of attacks at every step.


RSAC 2023 brought together thousands of cybersecurity professionals for four incredible days of expert perspectives, groundbreaking innovation, and best practices. 

Hacking the Cloud: Play-by-Play Attack on GitHub, Okta, and Salesforce

Conference: RSA Conference 2023

Authors: Brian Vecci

Abstract

Post a comment

Related work

Battle of Windows Service: A Silver Bullet to Discover File Privilege Escalation Bugs Automatically

Credential Sharing as a Service: the Dark Side of No Code

Permission Mining in GCP