Bishop Fox's Principal Researcher Rob Ragan and Principal Security Associate Oscar Salazar recently presented at Art Into Science. See details on their talk below.

These are the patterns of exposure URIs that you may find in your AWS accounts:

ACodD Presentation Abstract:

Right now, at the click of a button, can you answer the question “What in my cloud environments is internet-facing?”



For most security teams the answer to this question would be a sigh and then “No.” We know that complexity is the enemy of security. We also know a comprehensive asset inventory is step one to any security program. How can we practically make the dynamic changes occurring in every cloud account easier to monitor for unnecessary exposures?



In this presentation we will look at the most pragmatic ways to continuously monitor your cloud environments and operationalize that information to identify vulnerabilities. From AWS Provable Security Model and Access Analyzer, to customized automation, and review the state of the art with major cloud providers.



Authors

Oscar Salazar - Initial work - https://github.com/tracertea

- Initial work - https://github.com/tracertea Rob Ragan - Initial work - https://github.com/basicScandal

Acknowledgments