Feb. 13, 2023, 1 p.m. | Day Cyberwox

CYBERWOX www.youtube.com

This video covers an attack scenario very similar to how the US Bank Capital One got breached. @0xd4y goes over the attack scenario using CloudGoat by Rhino Security Labs, I detect his activities using AWS CloudTrail Lake.

_____________
🧬 VIDEO RESOURCES

🔹 Segev's YouTube Channel: @0xday674
🔹 Segev's walkthrough: https://www.youtube.com/watch?v=4ghLqwAXQfQ
🔹 Former AWS engineer convicted over hack that cost Capital One $270m: https://techmonitor.ai/technology/cybersecurity/capital-one-hack-aws-paige-thompson
🔹 CloudGoat: https://github.com/RhinoSecurityLabs/cloudgoat
🔹 Instance Metadata: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html
🔹 Sneaky Endpoints: https://github.com/Frichetten/SneakyEndpoints
🔹 AWSealion: https://github.com/0xd4y/AWSealion
🔹 GuarDuty Findings: …

attack aws aws cloud aws cloud security aws cloudtrail bank breach breached capital capital one career channel cloud cloud security cloudtrail detect key labs resources rhino scenario security security breach video youtube

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

Cyber Security Strategy Consultant

@ Capco | New York City

Cyber Security Senior Consultant

@ Capco | Chicago, IL

Sr. Product Manager

@ MixMode | Remote, US

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC