Scanning the internet for external cloud exposures - Nir Ohfeld, Hillai Ben-Sasson

Abstract: Remote hacking of traditional web applications is a widely-discussed topic with many tools and resources. However, penetration testing of publicly exposed cloud resources remains uncharted territory. Many devastating configuration mistakes can go unnoticed simply because of a lack of proper scanning tools. In this talk, we will demonstrate practical approaches to scanning and exploiting exposed cloud resources by showcasing newly developed methodologies for discovering these issues from external sources.

This session will cover several cloud services that may be …

applications ben cloud cloud resources configuration exposed external hacking internet penetration penetration testing resources scanning testing tools topic web web applications