all InfoSec news
Stealing OAuth Github Tokens with AWS CodeBuild
June 28, 2023, 1 p.m. | John Hammond
John Hammond www.youtube.com
You can learn more about Carlos Polop, Ignacio Dominguez or the security audits and assessments that HALBORN performs at https://j-h.io/halborn
Check out the vulnerability disclosure writeup from HALBORN: https://www.halborn.com/blog/post/halborn-discovers-and-discloses-vulnerability-in-aws-code-build
00:00 Preview
00:20 Introduction with Carlos & Ignacio
01:00 AWS CodeBuild Background
02:12 CodeBuild and GitHub Mishaps
05:12 Execute CodeBuild within a Docker Container …
amp aws cloud cloud service container credentials demo docker github halborn introduction man-in-the-middle oauth preview service stealing tokens
More from www.youtube.com / John Hammond
Privilege Escalation with Nim Package Manager
2 days, 20 hours ago |
www.youtube.com
Hacking The Davinci Code: WebDAV Cybersecurity
3 days, 20 hours ago |
www.youtube.com
Infrastructure as Code with Terraform & AWS
4 days, 20 hours ago |
www.youtube.com
Capture The Flag! NahamCon 2024 CTF Warmups
5 days, 20 hours ago |
www.youtube.com
NahamCon 2024 CTF is LIVE Right Now
1 week, 2 days ago |
www.youtube.com
I Put a Vulnerable Server on The Internet
1 week, 3 days ago |
www.youtube.com
How to Hack Web Apps with Caido
1 week, 4 days ago |
www.youtube.com
Discussing Active Directory & Internal Network Security
1 week, 5 days ago |
www.youtube.com
Finding WEIRD Phishing Websites
2 weeks, 1 day ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)