Posts

Cloud Goat IAM priviledge escalation by attachment scenario walkthrough

Cloud Goat IAM priviledge escalation by rollback scenario walkthrough

My Current Work Primarily focused on driving changes in the SOC to better monitor and maintain our cloud security posture. Successfully built, tuned, and deployed an AWS cloud anomaly detection platform based on CloudTrail events. Built several other custom pieces of cloud content and automations. Integrated our SOAR platform with AWS environments to automate IR and Forensic capabilities. Mentor members of the security team to better understand the cloud and container spaces....

IAM roles can have all current credentials revoked. This can be great to stop an attacker, but at what cost?

Let’s dig into what SAML is, and how it works.